Description
gpg2.exe in Gpg4win 2.0.1, as used in KDE Kleopatra 2.0.11, allows remote attackers to cause a denial of service (application crash) via a long certificate signature.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Dr_IDE · pythonlocalwindows
https://www.exploit-db.com/exploits/9884
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/53908
Exploit x_refsource_misc
http://www.packetstormsecurity.com/0910-exploits/gpg2kleo-dos.txt
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36781
Scores
EPSS
0.0132
EPSS Percentile
80.0%
Details
Status
published
Products (1)
gpg4win/gpg4win
2.0.1
Published
Oct 27, 2009
Tracked Since
Feb 18, 2026