CVE-2006-0455

{"id": "CVE-2006-0455", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-02-15T22:06:00.000", "references": [{"url": "ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U", "source": "secalert@redhat.com"}, {"url": "http://fedoranews.org/updates/FEDORA-2006-116.shtml", "source": "secalert@redhat.com"}, {"url": "http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html", "source": "secalert@redhat.com"}, {"url": "http://marc.info/?l=gnupg-devel&m=113999098729114&w=2", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18845", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18933", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18934", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18942", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18955", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18956", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18968", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/19130", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/19249", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/19532", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200602-10.xml", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:043", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_05_sr.html", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_09_gpg.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2006_13_gpg.html", "source": "secalert@redhat.com"}, {"url": "http://www.openpkg.org/security/OpenPKG-SA-2006.001-gnupg.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.osvdb.org/23221", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0266.html", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/425289/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/433931/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/16663", "tags": ["Exploit", "Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.476477", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.trustix.org/errata/2006/0008", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/usn-252-1", "source": "secalert@redhat.com"}, {"url": "http://www.us.debian.org/security/2006/dsa-978", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2006/0610", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24744", "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10084", "source": "secalert@redhat.com"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://fedoranews.org/updates/FEDORA-2006-116.shtml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=gnupg-devel&m=113999098729114&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18845", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18933", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18934", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18942", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18955", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18956", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18968", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/19130", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/19249", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/19532", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200602-10.xml", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:043", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.novell.com/linux/security/advisories/2006_05_sr.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.novell.com/linux/security/advisories/2006_09_gpg.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.novell.com/linux/security/advisories/2006_13_gpg.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.openpkg.org/security/OpenPKG-SA-2006.001-gnupg.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/23221", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0266.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/425289/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/433931/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/16663", "tags": ["Exploit", "Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.476477", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.trustix.org/errata/2006/0008", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/usn-252-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.us.debian.org/security/2006/dsa-978", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/0610", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24744", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10084", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "gpgv in GnuPG before 1.4.2.1, when using unattended signature verification, returns a 0 exit code in certain cases even when the detached signature file does not carry a signature, which could cause programs that use gpgv to assume that the signature verification has succeeded. Note: this also occurs when running the equivalent command \"gpg --verify\"."}, {"lang": "es", "value": "gpgv en GnuPG en versiones anteriores a 1.4.2.1, cuando se utiliza verificaci\u00f3n de firma desatendida, devuelve un c\u00f3digo de salida 0 en algunos casos, incluso cuando el archivo de firma acompa\u00f1ante no lleva una firma, esto puede provocar que los programas que usen gpgv asuman que la verificaci\u00f3n de la firma ha tenido \u00e9xito. Nota: Esto tambi\u00e9n ocurre cuando se ejecuta el comando equivalente \"gpg --verify\"."}], "lastModified": "2024-11-21T00:06:30.233", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E054978B-8466-4D12-B7DC-7E72CC57F0DE"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F38F964B-C5D1-4177-BD31-7AB4083CC431"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DF7811A-B254-4829-AED2-C70BD5C82592"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72ED862B-6278-41ED-9619-115E6552AFBB"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.3b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1869E888-E83C-4A62-AA84-F2C9F2AF12FB"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3D51820-D735-44FC-95BB-A473FFDE9D35"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5FB2C28-0E4D-4AE3-A2CC-0197FE578074"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F2224AF-EA7B-4A3D-8B23-7FC59D66E611"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A2B3B44-941E-4007-B58A-16E85B87CB33"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49A642D7-007E-479D-963E-A74AAE195A54"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86144B81-D321-4ECA-937F-FFA8A043FCE4"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A93CAE1-0DFC-43E1-997D-22CDC338D3E8"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.2:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9896332E-819B-4392-B704-B143DBBE90A7"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B641ED5-4326-43E7-BF42-982B44478A05"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76CAFD24-E53F-488C-BD9F-BE31D30828AD"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5D3628A-3BDD-4C6F-AE7D-C81FC3EE1630"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74589745-A9A6-44DB-B4F0-B61B663ECA21"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB2B99CB-5950-42E7-ACD5-38457CBE9095"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D81AF47A-56BA-4D90-A4D4-D7A37333A117"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E55DBB73-EF6C-4C46-9E5A-7C35D7FD190C"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "205C014A-236B-44CF-A92D-B4D6392FF9A7"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F412ECF0-DA84-47B8-98FD-06019C9E63E0"}, {"criteria": "cpe:2.3:a:gnu:privacy_guard:1.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE04D970-A467-4648-B99C-895BA8BEE79B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}