Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

seebug.org
seebug.orgadded 2007/06/14 12:0 a.m.25 views

WindowsPT用户ID密钥欺骗漏洞

Windows Privacy Tray是GnuPG的图形任务栏前端,集成了密钥管理和文件、剪贴板加密功能。 WinPT在显示密钥时存在问题,攻击者可能利用此漏洞欺骗用户ID。 在某些情况下密钥用户ID是在固定大小的窗口中显示的,如果密钥的用户ID中使用了大量的数据,就会截短显示多余的用户ID数据。这允许攻击者诱骗用户在某些操作中(包括密钥导入、签名、编辑、列出签名等)使用隐藏了额外用户ID的密钥,导致以攻击者的密钥而不是合法的密钥非预期地加密敏感信息。 WinPT WinPT 1.2.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2007/06/11 12:0 a.m.26 views

WindowsPT 1.2 - User ID Key Spoofing

source: https://www.securityfocus.com/bid/24412/info WinPT Windows Privacy Tray is prone to a key-spoofing vulnerability because it fails to properly display user-supplied key data. An attacker can exploit this issue to trick victim users into encrypting potentially sensitive information with a...

7.4AI score
Exploits0
Rows per page
Query Builder