Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2006-0455
HistoryFeb 15, 2006 - 12:00 a.m.

CVE-2006-0455

2006-02-1500:00:00
ubuntu.com
ubuntu.com
11

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

45.9%

JSON

gpgv in GnuPG before 1.4.2.1, when using unattended signature verification,
returns a 0 exit code in certain cases even when the detached signature
file does not carry a signature, which could cause programs that use gpgv
to assume that the signature verification has succeeded. Note: this also
occurs when running the equivalent command “gpg --verify”.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchgnupg< 1.4.2.2-1ubuntu2.5UNKNOWN
ubuntu6.10noarchgnupg< 1.4.3-2ubuntu3.3UNKNOWN
ubuntu7.04noarchgnupg< 1.4.6-1ubuntu2UNKNOWN

Related

nessus 11
freebsd 1
openvas 12
prion 2
debian 2
cve 2
gentoo 1
debiancve 2
ubuntu 1
suse 3
centos 2
ubuntucve 1
redhat 1
slackware 1
nessus
nessus
Debian DSA-978-1 : gnupg - programming error
2006-10-14 00:00:00
SUSE-SA:2006:009: gpg,liby2util
2006-02-22 00:00:00
GLSA-200602-10 : GnuPG: Incorrect signature verification
2006-02-19 00:00:00
freebsd
freebsd
gnupg -- false positive signature verification
2006-02-15 00:00:00
openvas
openvas
SLES9: Security update for gpg
2009-10-10 00:00:00
Debian Security Advisory DSA 978-1 (gnupg)
2008-01-17 00:00:00
FreeBSD Ports: gnupg
2008-09-04 00:00:00
prion
prion
Code injection
2006-02-15 22:06:00
Code injection
2006-03-13 21:06:00
debian
debian
[SECURITY] [DSA 978-1] New GnuPG packages fix invalid success return
2006-02-17 08:30:50
[SECURITY] [DSA 978-1] New GnuPG packages fix invalid success return
2006-02-17 00:00:00
cve
cve
CVE-2006-0455
2006-02-15 22:06:00
CVE-2006-0049
2006-03-13 21:06:00
gentoo
gentoo
GnuPG: Incorrect signature verification
2006-02-18 00:00:00
debiancve
debiancve
CVE-2006-0455
2006-02-15 22:06:00
CVE-2006-0049
2006-03-13 21:06:00
ubuntu
ubuntu
gnupg vulnerability
2006-02-18 00:00:00
suse
suse
remote code execution in gpg
2006-03-10 17:18:31
remote code execution in gpg,liby2util
2006-03-01 09:23:07
remote code execution in gpg,liby2util
2006-02-20 16:55:38
centos
centos
gnupg security update
2006-03-16 00:53:16
gnupg security update
2006-03-21 22:54:57
ubuntucve
ubuntucve
CVE-2006-0049
2006-03-13 00:00:00
redhat
redhat
(RHSA-2006:0266) gnupg security update
2006-03-15 00:00:00
slackware
slackware
[slackware-security] gnupg
2006-03-14 04:59:29

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

45.9%

JSON
Related for UB:CVE-2006-0455
nessus11freebsd1openvas12prion2debian2cve2gentoo1debiancve2ubuntu1suse3centos2ubuntucve1redhat1slackware1