CyberSec.Space Logo
Back to CVE Browser

CVE-2003-0978

HIGH
7.5
CVSS Severity Score
EPSS Score0.1790%
EPSS Percentile9.96th
PublishedJan 5, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Format string vulnerability in gpgkeys_hkp (experimental HKP interface) for the GnuPG (gpg) client 1.2.3 and earlier, and 1.3.3 and earlier, allows remote attackers or a malicious keyserver to cause a denial of service (crash) and possibly execute arbitrary code during key retrieval.

Affected Platforms (CPE)

πŸ“¦
Gnu

Privacy Guard

= 1.2
πŸ“¦
Gnu

Privacy Guard

= 1.2.1
πŸ“¦
Gnu

Privacy Guard

= 1.2.2
πŸ“¦
Gnu

Privacy Guard

= 1.2.2
πŸ“¦
Gnu

Privacy Guard

= 1.2.3
πŸ“¦
Gnu

Privacy Guard

= 1.3.3

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=107047470625214&w=2
πŸ”— http://www.novell.com/linux/security/advisories/2003_048_gpg.html
πŸ”— http://www.s-quadra.com/advisories/Adv-20031203.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/13892
πŸ”— http://marc.info/?l=bugtraq&m=107047470625214&w=2
πŸ”— http://www.novell.com/linux/security/advisories/2003_048_gpg.html
πŸ”— http://www.s-quadra.com/advisories/Adv-20031203.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/13892

Related Vulnerabilities

CVE-2001-05227.5

Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via ...

CVE-2001-02732.6

pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has expired when obtaining the keys via ...

CVE-2003-027210.0

admin.php in miniPortail allows remote attackers to gain administrative privileges by setting the miniPortailAdmin cookie to an "a...

CVE-2003-027410.0

Buffer overflow in catmail for ListProc 8.2.09 and earlier allows remote attackers to execute arbitrary code via a long ULISTPROC_...

CVE-2003-0978 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space