CVE-2006-0455

Published Feb 15, 2006

Last updated a year ago

Overview

Description: gpgv in GnuPG before 1.4.2.1, when using unattended signature verification, returns a 0 exit code in certain cases even when the detached signature file does not carry a signature, which could cause programs that use gpgv to assume that the signature verification has succeeded. Note: this also occurs when running the equivalent command "gpg --verify".
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E054978B-8466-4D12-B7DC-7E72CC57F0DE"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F38F964B-C5D1-4177-BD31-7AB4083CC431"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DF7811A-B254-4829-AED2-C70BD5C82592"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72ED862B-6278-41ED-9619-115E6552AFBB"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.3b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1869E888-E83C-4A62-AA84-F2C9F2AF12FB"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3D51820-D735-44FC-95BB-A473FFDE9D35"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5FB2C28-0E4D-4AE3-A2CC-0197FE578074"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F2224AF-EA7B-4A3D-8B23-7FC59D66E611"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A2B3B44-941E-4007-B58A-16E85B87CB33"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49A642D7-007E-479D-963E-A74AAE195A54"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86144B81-D321-4ECA-937F-FFA8A043FCE4"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A93CAE1-0DFC-43E1-997D-22CDC338D3E8"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.2:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9896332E-819B-4392-B704-B143DBBE90A7"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B641ED5-4326-43E7-BF42-982B44478A05"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76CAFD24-E53F-488C-BD9F-BE31D30828AD"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5D3628A-3BDD-4C6F-AE7D-C81FC3EE1630"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74589745-A9A6-44DB-B4F0-B61B663ECA21"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB2B99CB-5950-42E7-ACD5-38457CBE9095"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D81AF47A-56BA-4D90-A4D4-D7A37333A117"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E55DBB73-EF6C-4C46-9E5A-7C35D7FD190C"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "205C014A-236B-44CF-A92D-B4D6392FF9A7"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F412ECF0-DA84-47B8-98FD-06019C9E63E0"
          },
          {
            "criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE04D970-A467-4648-B99C-895BA8BEE79B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References