CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2001-1252

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile26.30th
Published2001年9月28日
Last Modified2026年4月16日

Vulnerability Description

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs (1) console, (2) cs, (3) multi_config and (4) directory.

Affected Platforms (CPE)

📦
Pgp

Keyserver

= 7.0
📦
Pgp

Keyserver

= 7.0.1

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2001-09/0230.html
🔗 http://www.iss.net/security_center/static/7203.php
🔗 http://www.osvdb.org/1955
🔗 http://www.osvdb.org/4193
🔗 http://www.pgp.com/support/product-advisories/keyserver.asp
🔗 http://www.securityfocus.com/bid/3375
🔗 http://archives.neohapsis.com/archives/bugtraq/2001-09/0230.html
🔗 http://www.iss.net/security_center/static/7203.php

相關漏洞威脅

CVE-2005-19249.3

The G/PGP (GPG) Plugin 2.1 and earlier for Squirrelmail allow remote authenticated users to execute arbitrary commands via shell m...

CVE-2015-08398.1

The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrar...

CVE-2003-09787.5

Format string vulnerability in gpgkeys_hkp (experimental HKP interface) for the GnuPG (gpg) client 1.2.3 and earlier, and 1.3.3 an...

CVE-2019-130507.5

Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to...