CVE-2014-1646 Information

Description

Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies which allows remote attackers to cause a denial of service (read access violation and application crash) via a malformed certificate.

Reference

http://www.securityfocus.com/bid/67016 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140423_00