Lucene search
MitreCVE-2003-0978HistoryJan 05, 2004 - 5:00 a.m.
CVE-2003-0978
2004-01-0505:00:00
mitre
web.nvd.nist.gov
28
cve-2003-0978
nvd
gpg
vulnerability
format string
denial of service
code execution
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
High
EPSS
0.035
Percentile
91.5%
Format string vulnerability in gpgkeys_hkp (experimental HKP interface) for the GnuPG (gpg) client 1.2.3 and earlier, and 1.3.3 and earlier, allows remote attackers or a malicious keyserver to cause a denial of service (crash) and possibly execute arbitrary code during key retrieval.
Affected configurations
Node
gnuprivacy_guardMatch1.2
ORgnuprivacy_guardMatch1.2.1
ORgnuprivacy_guardMatch1.2.2
ORgnuprivacy_guardMatch1.2.2rc1
ORgnuprivacy_guardMatch1.2.3
ORgnuprivacy_guardMatch1.3.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gnu | privacy_guard | 1.2 | cpe:2.3:a:gnu:privacy_guard:1.2:*:*:*:*:*:*:* |
| gnu | privacy_guard | 1.2.1 | cpe:2.3:a:gnu:privacy_guard:1.2.1:*:*:*:*:*:*:* |
| gnu | privacy_guard | 1.2.2 | cpe:2.3:a:gnu:privacy_guard:1.2.2:*:*:*:*:*:*:* |
| gnu | privacy_guard | 1.2.2 | cpe:2.3:a:gnu:privacy_guard:1.2.2:rc1:*:*:*:*:*:* |
| gnu | privacy_guard | 1.2.3 | cpe:2.3:a:gnu:privacy_guard:1.2.3:*:*:*:*:*:*:* |
| gnu | privacy_guard | 1.3.3 | cpe:2.3:a:gnu:privacy_guard:1.3.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2003-0978
2003-12-10 05:00:00
nvd
nvd
CVE-2003-0978
2004-01-05 05:00:00
suse
suse
cryptographic compromise, remote cmd execution in gpg
2003-12-03 14:20:12
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
High
EPSS
0.035
Percentile
91.5%
Related for CVE-2003-0978