Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0381

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0381
Last Modified 05 Sep 2008 04:23:57
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0381

Summary

The OpenPGP PGP standard allows an attacker to determine the private signature key via a cryptanalytic attack in which the attacker alters the encrypted private key file and captures a single message signed with the signature key.

Vulnerable Systems

Application

  • Openpgp


References

XF - openpgp-private-key-disclosure(6558)

BID - 2673

REDHAT - RHSA-2001:063

OSVDB - 11966

BUGTRAQ - 20010322 Re: Yes, they have found a serious PGP vulnerability...sort of

BUGTRAQ - 20010320 Yes, they have found a serious PGP vulnerability...sort of

BUGTRAQ - 20010319 Have they found a serious PGP vulnerability?!

CALDERA - CSSA-2001-017.0


Last Updated: 27 May 2016 10:36:14