Back to search
CVE-2006-3457
Published: Aug 5, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Symantec On-Demand Agent (SODA) before 2.5 MR2 Build 2157, and the Virtual Desktop module in Symantec On-Demand Protection (SODP) before 2.6 Build 2233, do not properly encrypt files that are subject to policy-based automatic encryption, which might allow local users to read sensitive data via an unspecified decryption method.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1016619
vdb-entry
x_refsource_SECTRACK
19248
vdb-entry
x_refsource_BID
20060801 SYM06-013 Symantec On-Demand Protection Encrypted Data Exposure
mailing-list
x_refsource_BUGTRAQ
symantec-ondemand-weak-encryption(28181)
vdb-entry
x_refsource_XF
http://www.symantec.com/avcenter/security/Content/2006.08.01a.html
x_refsource_CONFIRM
ADV-2006-3097
vdb-entry
x_refsource_VUPEN
21280
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now