CVE-2007-3201 Information

Description

Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID and possibly cause the user to encrypt a victim’s correspondence with this attacker-supplied key via a key ID composed of the attacker’s user ID space characters an invalid WinPT message additional space characters and the victim’s user ID.

Reference

http://osvdb.org/41727 http://securityreason.com/securityalert/2791 http://wald.intevation.org/tracker/index.php?func=detail&aid=327&group_id=14&atid=138 http://www.securityfocus.com/archive/1/471045/100/0/threaded http://www.securityfocus.com/bid/24412 https://exchange.xforce.ibmcloud.com/vulnerabilities/34813