Page 5 of 24 results (0.003 seconds)

CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0

PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim's public certificate to decrypt any data that has been encrypted with the modified certificate. • http://www.cert.org/advisories/CA-2000-18.html http://www.osvdb.org/4354 http://www.securityfocus.com/bid/1606 •

CVSS: 3.6EPSS: 0%CPEs: 1EXPL: 0

The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR. • http://marc.info/?l=bugtraq&m=96430372326912&w=2 •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 1

The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0107.html http://www.securityfocus.com/bid/1343 https://exchange.xforce.ibmcloud.com/vulnerabilities/4695 •

CVSS: 2.1EPSS: 0%CPEs: 3EXPL: 0

The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys. • http://archives.neohapsis.com/archives/bugtraq/2000-05/0273.html http://www.cert.org/advisories/CA-2000-09.html http://www.osvdb.org/1355 http://www.securityfocus.com/bid/1251 •