Описание
gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.
gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2001-0071
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5802
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000368
- http://www.debian.org/security/2000/20001225b
- http://www.linux-mandrake.com/en/updates/2000/MDKSA-2000-087.php3
- http://www.osvdb.org/1699
- http://www.redhat.com/support/errata/RHSA-2000-131.html
- http://www.securityfocus.com/archive/1/152197
- http://www.securityfocus.com/bid/2141
EPSS
Процентиль: 34%
0.00138
Низкий
CVE ID
Связанные уязвимости
redhat
около 25 лет назад
gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.
nvd
почти 25 лет назад
gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.
EPSS
Процентиль: 34%
0.00138
Низкий