CVE-2001-0522

Gnu Privacy Guard 1.05 - Format String Vulnerability via Encrypted File Filename

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0522. PoCs published by fish stiqz.

AI-analyzed exploit summary The provided text describes a format string vulnerability in GnuPG that can be exploited via a maliciously crafted encrypted document. The vulnerability allows remote attackers to execute arbitrary code when the document is decrypted.

Description

Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file.

Exploits (1)

exploitdb WRITEUP VERIFIED

by fish stiqz · textremotemultiple

https://www.exploit-db.com/exploits/20889

View Code ZIP pw:eip

The provided text describes a format string vulnerability in GnuPG that can be exploited via a maliciously crafted encrypted document. The vulnerability allows remote attackers to execute arbitrary code when the document is decrypted.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: GnuPG (version not specified)

No auth needed

Prerequisites: Victim must decrypt a maliciously crafted encrypted document

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (14)

Core 14

Core References

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://online.securityfocus.com/archive/1/188218

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/6642

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/403051

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2797

Vendor Advisory vendor-advisory x_refsource_caldera

http://www.calderasystems.com/support/security/advisories/CSSA-2001-020.0.txt

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2001-073.html

Various Sources x_refsource_confirm

http://www.gnupg.org/whatsnew.html#rn20010529

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2001/dsa-061

Various Sources vendor-advisory x_refsource_turbo

http://www.turbolinux.com/pipermail/tl-security-announce/2001-June/000439.html

Vendor Advisory vendor-advisory x_refsource_conectiva

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000399

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/1845

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2001_020_gpg_txt.html

Various Sources vendor-advisory x_refsource_immunix

http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-023-01

Patch, Vendor Advisory vendor-advisory x_refsource_mandrake

http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-053.php3

Scores

EPSS 0.1373

EPSS Percentile 96.0%

Details

Status published

Products (3)

gnu/privacy_guard 7.1

gnu/privacy_guard 7.2

gnu/privacy_guard 8.0

Published Aug 14, 2001

Tracked Since Feb 18, 2026