CVE-2012-6533

Symantec PGP Desktop and Encryption Desktop - Local Privilege Escalation via Buffer Overflow in pgpwded.sys

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-6533. PoCs published by Nikita Tarakanov.

AI-analyzed exploit summary This exploit targets a local buffer overflow vulnerability in Symantec Encryption Desktop (CVE-2012-6533) to achieve privilege escalation. It uses DeviceIoControl with a specific IO control code to overwrite the HalDispatchTable, leading to arbitrary code execution with elevated privileges.

Description

Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Nikita Tarakanov · textlocalwindows
https://www.exploit-db.com/exploits/38299

This exploit targets a local buffer overflow vulnerability in Symantec Encryption Desktop (CVE-2012-6533) to achieve privilege escalation. It uses DeviceIoControl with a specific IO control code to overwrite the HalDispatchTable, leading to arbitrary code execution with elevated privileges.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Symantec Encryption Desktop
No auth needed
Prerequisites: Local access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

EPSS 0.0062
EPSS Percentile 45.0%

Details

CWE
CWE-119
Status published
Products (10)
symantec/encryption_desktop 10.3.0
symantec/pgp_desktop 10.0.0
symantec/pgp_desktop 10.0.1
symantec/pgp_desktop 10.0.2
symantec/pgp_desktop 10.0.3
symantec/pgp_desktop 10.1.0
symantec/pgp_desktop 10.1.1
symantec/pgp_desktop 10.1.2
symantec/pgp_desktop 10.2.0
symantec/pgp_desktop 10.2.1
Published Feb 18, 2013
Tracked Since Feb 18, 2026