Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2003-0971

Published: 15/12/2003 Updated: 11/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 449
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Privacy Guard

Vulnerability Summary

GnuPG (GPG) 1.0.2, and other versions up to 1.2.3, creates ElGamal type 20 (sign+encrypt) keys using the same key component for encryption as for signing, which allows malicious users to determine the private key from a signature.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu privacy guard 1.0.2

gnu privacy guard 1.2.1

gnu privacy guard 1.2.2

gnu privacy guard 1.0.7

gnu privacy guard 1.2

gnu privacy guard 1.0.3

gnu privacy guard 1.0.3b

gnu privacy guard 1.2.3

gnu privacy guard 1.0.4

gnu privacy guard 1.0.5

gnu privacy guard 1.0.6

Vendor Advisories

Debian Security Advisories: DSA-429-1 gnupg -- cryptographic weakness
Phong Nguyen identified a severe bug in the way GnuPG creates and uses ElGamal keys for signing This is a significant security failure which can lead to a compromise of almost all ElGamal keys used for signing This update disables the use of this type of key For the current stable distribution (woody) this problem has been fixed in version 106 ...

Github Repositories

https://github.com/MrE-Fog/wycheproof-2

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/DennissimOS/platform_external_wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/jquepi/wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/TinkerBoard2-Android/external-wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/TinkerBoard-Android/rockchip-android-external-wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/madhan1229/clone-prod

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/TinkerEdgeR-Android/external_wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/google/wycheproof

Project Wycheproof tests crypto libraries against known attacks.

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/MrE-Fog/wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/MrE-Fog/wycheproofz

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/ep-infosec/50_google_wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/jquepi/wycheproof11

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/aosp-caf-upstream/platform_external_wycheproof

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it [TOC] Introduction Project Wycheproof tests crypto libraries against known attacks It is d

https://github.com/C2SP/wycheproof

Project Wycheproof tests crypto libraries against known attacks.

Project Wycheproof githubcom/google/wycheproof Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world The main motivation for the project is to have a goal that is achievable The smaller the mountain the more likely it is to be able to climb it NoteHello RWC 2024 attendees and others! Wycheproof recently moved to community maintenance

References

NVD-CWE-Otherhttp://lists.gnupg.org/pipermail/gnupg-announce/2003q4/000276.htmlhttp://lists.gnupg.org/pipermail/gnupg-announce/2003q4/000277.htmlhttp://www.securityfocus.com/bid/9115http://www.novell.com/linux/security/advisories/2003_048_gpg.htmlhttp://www.redhat.com/support/errata/RHSA-2003-390.htmlhttp://www.redhat.com/support/errata/RHSA-2003-395.htmlhttp://www.debian.org/security/2004/dsa-429http://www.kb.cert.org/vuls/id/940388http://secunia.com/advisories/10304http://secunia.com/advisories/10349http://secunia.com/advisories/10399http://secunia.com/advisories/10400http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000798http://www.mandriva.com/security/advisories?name=MDKSA-2003:109ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.aschttp://marc.info/?l=bugtraq&m=106995769213221&w=2https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10982https://nvd.nist.govhttps://www.debian.org/security/./dsa-429https://www.kb.cert.org/vuls/id/940388
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook