CVE-2001-0522

GnuPG <1.05 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file.

Exploits (1)

exploitdb WRITEUP VERIFIED
by fish stiqz · textremotemultiple
https://www.exploit-db.com/exploits/20889

References (14)

Core 14
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/188218
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6642
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/403051
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2797
Vendor Advisory vendor-advisory x_refsource_caldera
http://www.calderasystems.com/support/security/advisories/CSSA-2001-020.0.txt
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2001-073.html
Various Sources x_refsource_confirm
http://www.gnupg.org/whatsnew.html#rn20010529
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2001/dsa-061
Various Sources vendor-advisory x_refsource_turbo
http://www.turbolinux.com/pipermail/tl-security-announce/2001-June/000439.html
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000399
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1845
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2001_020_gpg_txt.html
Various Sources vendor-advisory x_refsource_immunix
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-023-01
Patch, Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-053.php3

Scores

EPSS 0.1114
EPSS Percentile 93.5%

Details

Status published
Products (3)
gnu/privacy_guard 7.1
gnu/privacy_guard 7.2
gnu/privacy_guard 8.0
Published Aug 14, 2001
Tracked Since Feb 18, 2026