CVE-2001-0071

  • Last update: Apr 13, 2023

Description

gpg (aka GnuPG) 1.0.4 and other versions does not properly verify detached signatures, which allows attackers to modify the contents of a file without detection.

Software From Fixed in
gnu / privacy_guard 1.0 1.0.x
gnu / privacy_guard 1.0.1 1.0.1.x
gnu / privacy_guard 1.0.2 1.0.2.x
gnu / privacy_guard 1.0.3 1.0.3.x
gnu / privacy_guard 1.0.3b 1.0.3b.x

Details

    • Severity: Low
  • CVE: CVE-2001-0071
  • Published: Feb 12, 2001
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: Low
  • Score: 2.1
  • AV:L/AC:L/Au:N/C:N/I:P/A:N