CyberSec.Space Logo
CVEブラウザに戻る

CVE-2001-0522

HIGH
7.5
CVSS Severity Score
EPSS Score0.0100%
EPSS Percentile16.38th
Published2001年8月14日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in Gnu Privacy Guard (aka GnuPG or gpg) 1.05 and earlier can allow an attacker to gain privileges via format strings in the original filename that is stored in an encrypted file.

Affected Platforms (CPE)

📦
Gnu

Privacy Guard

= 7.1
📦
Gnu

Privacy Guard

= 7.2
📦
Gnu

Privacy Guard

= 8.0

References & Advisories

🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000399
🔗 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-023-01
🔗 http://online.securityfocus.com/archive/1/188218
🔗 http://www.calderasystems.com/support/security/advisories/CSSA-2001-020.0.txt
🔗 http://www.debian.org/security/2001/dsa-061
🔗 http://www.gnupg.org/whatsnew.html#rn20010529
🔗 http://www.kb.cert.org/vuls/id/403051
🔗 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-053.php3

関連する脆弱性情報

CVE-2001-02732.6

pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has expired when obtaining the keys via ...

CVE-2001-007010.0

Buffer overflow in 1st Up Mail Server 4.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary com...

CVE-2001-007610.0

register.cgi in Ikonboard 2.1.7b and earlier allows remote attackers to execute arbitrary commands via the SEND_MAIL parameter, wh...

CVE-2001-009810.0

Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begi...