CVE-2006-0455

GnuPG < 1.4.2.1 - Unattended Signature Verification Bypass via Missing Signature

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0455. PoCs published by taviso.

AI-analyzed exploit summary This exploit demonstrates a signature verification bypass in GnuPG by creating a file with an invalid detached signature that is incorrectly validated by 'gpgv'. The exit status of '0' falsely indicates successful verification, potentially leading to security bypasses.

Description

gpgv in GnuPG before 1.4.2.1, when using unattended signature verification, returns a 0 exit code in certain cases even when the detached signature file does not carry a signature, which could cause programs that use gpgv to assume that the signature verification has succeeded. Note: this also occurs when running the equivalent command "gpg --verify".

Exploits (1)

exploitdb WORKING POC VERIFIED

by taviso · textlocallinux

https://www.exploit-db.com/exploits/27231

View Code ZIP pw:eip

This exploit demonstrates a signature verification bypass in GnuPG by creating a file with an invalid detached signature that is incorrectly validated by 'gpgv'. The exit status of '0' falsely indicates successful verification, potentially leading to security bypasses.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: GnuPG (versions affected by CVE-2006-0455)

No auth needed

Prerequisites: GnuPG installed · ability to create or modify files

MITRE ATT&CK

T1553.002 - Code Signing

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (32)

Core 32

Core References

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16663

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18956

Vendor Advisory vendor-advisory x_refsource_trustix

http://www.trustix.org/errata/2006/0008

Mailing List mailing-list x_refsource_mlist

http://marc.info/?l=gnupg-devel&m=113999098729114&w=2

Vendor Advisory vendor-advisory x_refsource_openpkg

http://www.openpkg.org/security/OpenPKG-SA-2006.001-gnupg.html

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19249

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2006_05_sr.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2006-0266.html

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2006_13_gpg.html

Vendor Advisory vendor-advisory x_refsource_sgi

ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/425289/100/0/threaded

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18934

Mailing List vendor-advisory x_refsource_fedora

http://fedoranews.org/updates/FEDORA-2006-116.shtml

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/24744

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10084

Patch vendor-advisory x_refsource_slackware

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.476477

Third Party Advisory, VDB Entry vendor-advisory x_refsource_fedora

http://www.securityfocus.com/archive/1/433931/100/0/threaded

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18955

Various Sources mailing-list x_refsource_mlist

http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html

Patch, Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2006_09_gpg.html

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19130

Patch, Vendor Advisory vendor-advisory x_refsource_gentoo

http://www.gentoo.org/security/en/glsa/glsa-200602-10.xml

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19532

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18933

Patch, Vendor Advisory vendor-advisory x_refsource_debian

http://www.us.debian.org/security/2006/dsa-978

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/23221

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/usn-252-1

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18968

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18845

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18942

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDKSA-2006:043

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/0610

Scores

EPSS 0.0133

EPSS Percentile 67.3%

Details

Status published

Products (22)

gnu/privacy_guard 1.0

gnu/privacy_guard 1.0.1

gnu/privacy_guard 1.0.2

gnu/privacy_guard 1.0.3

gnu/privacy_guard 1.0.3b

gnu/privacy_guard 1.0.4

gnu/privacy_guard 1.0.5

gnu/privacy_guard 1.0.6

gnu/privacy_guard 1.0.7

gnu/privacy_guard 1.2

... and 12 more

Published Feb 15, 2006

Tracked Since Feb 18, 2026