← CVECheck
HomeVulnerabilities

CVE-2002-2069 — HIGH severity vulnerability (PGP 6.x and 7.x does not clear Windows alternate data stream)

PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

CVE IDCVE-2002-2069
SeverityHIGH
CVSS score7.5
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWECWE-459
StatusModified
Published2002-12-31
Last modified2026-04-16
DescriptionPGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →