Gerardo Richarte

3 exploits Active since Mar 2007
CVE-2007-1266 EXPLOITDB python WORKING POC
Evolution < 2.8.1 - OpenPGP Message Forgery via GnuPG Status-FD Mismanagement
Evolution 2.8.1 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Evolution from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection.
CVE-2007-1263 EXPLOITDB python WORKING POC
GnuPG < 1.4.6 and GPGME < 1.1.4 - Unauthenticated Message Forgery via OpenPGP Message Rendering
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
CVE-2007-1264 EXPLOITDB python WORKING POC
Enigmail < 0.94.2 - Message Forgery via GnuPG Status-FD Mismanagement
Enigmail 0.94.2 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Enigmail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection.