Lucene search
Ubuntu.comUB:CVE-2007-1265HistorySep 29, 2008 - 12:00 a.m.
CVE-2007-1265
2008-09-2900:00:00
ubuntu.com
ubuntu.com
10
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:C/A:N
0.036 Low
EPSS
Percentile
91.7%
KMail 1.9.5 and earlier does not properly use the --status-fd argument when
invoking GnuPG, which prevents KMail from visually distinguishing between
signed and unsigned portions of OpenPGP messages with multiple components,
which allows remote attackers to forge the contents of a message without
detection.
Related
nvd
nvd
CVE-2007-1265
2007-03-06 20:19:00
prion
prion
Design/Logic Flaw
2007-03-06 20:19:00
cvelist
cvelist
CVE-2007-1265
2007-03-06 20:00:00
debiancve
debiancve
CVE-2007-1265
2007-03-06 20:19:00
cve
cve
CVE-2007-1265
2007-03-06 20:19:00
coresecurity
coresecurity
GnuPG and GnuPG clients unsigned data injection vulnerability
2007-03-05 00:00:00
securityvulns
securityvulns
Unsigned content spoofing in multiple application launching GnuPG
2007-03-06 00:00:00
nessus
nessus
Ubuntu 5.10 / 6.06 LTS / 6.10 : gnupg vulnerability (USN-432-1)
2007-11-10 00:00:00
Mandrake Linux Security Advisory : gnupg (MDKSA-2007:059)
2007-03-12 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:C/A:N
0.036 Low
EPSS
Percentile
91.7%
Related for UB:CVE-2007-1265