CVE-2007-1263
published 2007-03-06CVE-2007-1263: GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages…
PriorityP428medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
5.36%
91.6th percentile
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gnupg2 | < gnupg2 2.0.3-1 (bookworm) | gnupg2 2.0.3-1 (bookworm) |
| debian | gpgme1.0 | < gnupg2 2.0.3-1 (bookworm) | gnupg2 2.0.3-1 (bookworm) |
| gnu | gpgme | <= 1.1.3 | — |
| gnupg | gnupg | <= 1.4.6 | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mx49-25fh-66c8: GnuPG 1
ghsa_unreviewed·2022-05-03
CVE-2007-1263 [MEDIUM] GHSA-mx49-25fh-66c8: GnuPG 1
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
OSV
CVE-2007-1263: GnuPG 1
osv·2007-03-06·CVSS 5.0
CVE-2007-1263 [MEDIUM] CVE-2007-1263: GnuPG 1
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
Ubuntu
GnuPG2, GPGME vulnerability
vendor_ubuntu·2007-03-13
CVE-2007-1263 GnuPG2, GPGME vulnerability
Title: GnuPG2, GPGME vulnerability
Summary: GnuPG2, GPGME vulnerability
USN-432-1 fixed a vulnerability in GnuPG. This update provides the
corresponding updates for GnuPG2 and the GPGME library.
Original advisory details:
Gerardo Richarte from Core Security Technologies discovered that when
gnupg is used without --status-fd, there is no way to distinguish
initial unsigned messages from a following signed message. An attacker
could inject an unsigned message, which could fool the user into
thinking the message was entirely signed by the original sender.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Ubuntu
GnuPG vulnerability
vendor_ubuntu·2007-03-08
CVE-2007-1263 GnuPG vulnerability
Title: GnuPG vulnerability
Summary: GnuPG vulnerability
Gerardo Richarte from Core Security Technologies discovered that when
gnupg is used without --status-fd, there is no way to distinguish
initial unsigned messages from a following signed message. An attacker
could inject an unsigned message, which could fool the user into
thinking the message was entirely signed by the original sender.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
gnupg/gpgme signed message spoofing
vendor_redhat·2007-03-05·CVSS 5.0
CVE-2007-1263 [MEDIUM] gnupg/gpgme signed message spoofing
gnupg/gpgme signed message spoofing
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
Debian
CVE-2007-1263: gnupg2 - GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, ...
vendor_debian·2007·CVSS 5.0
CVE-2007-1263 [MEDIUM] CVE-2007-1263: gnupg2 - GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, ...
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
Scope: local
bookworm: resolved (fixed in 2.0.3-1)
bullseye: resolved (fixed in 2.0.3-1)
forky: resolved (fixed in 2.0.3-1)
sid: resolved (fixed in 2.0.3-1)
trixie: resolved (fixed in 2.0.3-1)
No detection rules found.
Bugzilla
CVE-2007-1263 gnupg/gpgme signed message spoofing
bugzilla·2008-01-28·CVSS 5.0
CVE-2007-1263 [MEDIUM] CVE-2007-1263 gnupg/gpgme signed message spoofing
CVE-2007-1263 gnupg/gpgme signed message spoofing
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-1263 to the following vulnerability:
GnuPG 1.4.6 and earlier and GPGME before 1.1.4, when run from the command line, does not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components, which might allow remote attackers to forge the contents of a message without detection.
References:
http://www.securityfocus.com/archive/1/archive/1/461958/100/0/threaded
http://lists.gnupg.org/pipermail/gnupg-users/2007-March/030514.html
http://www.coresecurity.com/?action=item&id=1687
https://issues.rpath.com/browse/RPL-1111
http://support.avaya.com/elmodocs2/security/ASA-2007-144.htm
http://www.debian.org/security/2007/dsa-1266
http://fedoranews.o
Bugzilla
CVE-2007-1263 gnupg signed message spoofing
bugzilla·2007-02-28·CVSS 5.0
CVE-2007-1263 [MEDIUM] CVE-2007-1263 gnupg signed message spoofing
CVE-2007-1263 gnupg signed message spoofing
+++ This bug was initially created as a clone of Bug #230456 +++
CoreLabs has reported several flaws in the way gnupg verifies signed messages.
It is possible to construct a message with injected content and it will appear
to be valid, signed content.
This flaw is most dangerous in the way many mail programs use gnupg to verify
signed and encrypted messages.
-- Additional comment from [email protected] on 2007-02-28 16:35 EST --
Created an attachment (id=148963)
Proposed patch
Discussion:
removing embargo, public yesterday
---
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find
Bugzilla
CVE-2007-1263 gnupg signed message spoofing
bugzilla·2007-02-28·CVSS 5.0
CVE-2007-1263 [MEDIUM] CVE-2007-1263 gnupg signed message spoofing
CVE-2007-1263 gnupg signed message spoofing
CoreLabs has reported several flaws in the way gnupg verifies signed messages.
It is possible to construct a message with injected content and it will appear
to be valid, signed content.
This flaw is most dangerous in the way many mail programs use gnupg to verify
signed and encrypted messages.
Discussion:
These flaws also affect RHEL2.1 and RHEL3
---
Created attachment 148963
Proposed patch
---
now public at
http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1687
removing embargo
---
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
ple
Dragos
OT Security Advisories
blogs_dragos·2025-09-17·CVSS 7.5
CVE-2024-432057 [HIGH] OT Security Advisories
## OT Security Advisories
## These advisories cover OT/ICS vulnerabilities discovered and disclosed by Dragos as an authorized CVE Numbering Authority (CNA).
Threat Level
Name
CVE ID
Vulnerability Type
Affects
Limited Threat
Maples Systems/Weintek HMI Panel and EBPro Software Vulnerabilities
CVE-2024-432057
CVE-2024-7710
Incorrect Permission Assignment for Critical Resource
Integrity check fails to identify out-of-band logic changes
Maple Systems and Weintek Brand HMI panels: iP Series: All versions, all models
iE Series: All versions, all models
eMT Series: All versions, all models
XE Series: All versions, all models
mTV Series: All versions, all models
Maple Systems and Weintek Brand HMI panels: iP Series: All versions, all models
iE Series: All versions, all models
eMT Ser
ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.aschttp://fedoranews.org/cms/node/2775http://fedoranews.org/cms/node/2776http://lists.gnupg.org/pipermail/gnupg-users/2007-March/030514.htmlhttp://lists.suse.com/archive/suse-security-announce/2007-Mar/0008.htmlhttp://secunia.com/advisories/24365http://secunia.com/advisories/24407http://secunia.com/advisories/24419http://secunia.com/advisories/24420http://secunia.com/advisories/24438http://secunia.com/advisories/24489http://secunia.com/advisories/24511http://secunia.com/advisories/24544http://secunia.com/advisories/24650http://secunia.com/advisories/24734http://secunia.com/advisories/24875http://securityreason.com/securityalert/2353http://support.avaya.com/elmodocs2/security/ASA-2007-144.htmhttp://www.coresecurity.com/?action=item&id=1687http://www.debian.org/security/2007/dsa-1266http://www.mandriva.com/security/advisories?name=MDKSA-2007:059http://www.redhat.com/support/errata/RHSA-2007-0106.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0107.htmlhttp://www.securityfocus.com/archive/1/461958/100/0/threadedhttp://www.securityfocus.com/archive/1/461958/30/7710/threadedhttp://www.securityfocus.com/bid/22757http://www.securitytracker.com/id?1017727http://www.trustix.org/errata/2007/0009/http://www.ubuntu.com/usn/usn-432-1http://www.ubuntu.com/usn/usn-432-2http://www.vupen.com/english/advisories/2007/0835https://issues.rpath.com/browse/RPL-1111https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10496ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.aschttp://fedoranews.org/cms/node/2775http://fedoranews.org/cms/node/2776http://lists.gnupg.org/pipermail/gnupg-users/2007-March/030514.htmlhttp://lists.suse.com/archive/suse-security-announce/2007-Mar/0008.htmlhttp://secunia.com/advisories/24365http://secunia.com/advisories/24407http://secunia.com/advisories/24419http://secunia.com/advisories/24420http://secunia.com/advisories/24438http://secunia.com/advisories/24489http://secunia.com/advisories/24511http://secunia.com/advisories/24544http://secunia.com/advisories/24650http://secunia.com/advisories/24734http://secunia.com/advisories/24875http://securityreason.com/securityalert/2353http://support.avaya.com/elmodocs2/security/ASA-2007-144.htmhttp://www.coresecurity.com/?action=item&id=1687http://www.debian.org/security/2007/dsa-1266http://www.mandriva.com/security/advisories?name=MDKSA-2007:059http://www.redhat.com/support/errata/RHSA-2007-0106.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0107.htmlhttp://www.securityfocus.com/archive/1/461958/100/0/threadedhttp://www.securityfocus.com/archive/1/461958/30/7710/threadedhttp://www.securityfocus.com/bid/22757http://www.securitytracker.com/id?1017727http://www.trustix.org/errata/2007/0009/http://www.ubuntu.com/usn/usn-432-1http://www.ubuntu.com/usn/usn-432-2http://www.vupen.com/english/advisories/2007/0835https://issues.rpath.com/browse/RPL-1111https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10496
2007-03-06
Published