Medium severity5.5NVD Advisory· Published Aug 12, 2002· Updated Apr 16, 2026

CVE-2002-0788

Description

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain cleartext information.

Affected products

PGP Corporation/Corporate Desktop
cpe:2.3:a:pgp:corporate_desktop:7.1:*:*:*:*:*:*:*
PGP Corporation/Freeware
cpe:2.3:a:pgp:freeware:7.0.3:*:*:*:*:*:*:*
PGP Corporation/Personal Security
cpe:2.3:a:pgp:personal_security:7.0.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2002-05/0052.htmlnvdBroken LinkPatchVendor Advisory
www.iss.net/security_center/static/9044.phpnvdBroken LinkPatchVendor Advisory
www.securityfocus.com/bid/4702nvdBroken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
download.nai.com/products/licensed/pgp/desktop_security/windows/version_7.1/hotfix/ReadMe.txtnvdThird Party Advisory
www.osvdb.org/4363nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000