Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0265PGP vulnerability

3 documents3 sources
Severity
2.1LOWNVD
EPSS
0.9%
top 23.67%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
PGP
Timeline
PublishedJun 18
Latest updateApr 30

Description

ASCII Armor parser in Windows PGP 7.0.3 and earlier allows attackers to create files in arbitrary locations via a malformed ASCII armored file.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDpgp/pgp7.0.3+1

Patches

Patch: www.atstake.comPatch: www.atstake.com

🔴Vulnerability Details

1
GHSA
GHSA-44jw-5jxp-qmqr: ASCII Armor parser in Windows PGP 72022-04-30

💥Exploits & PoCs

1
Exploit-DB
PGP 5.x/6.x/7.0 - ASCII Armor Parser Arbitrary File Creation2001-04-09