Heap-based buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages with "C-escape" expansions, which cause the make_printable_string function to return a longer string than expected while constructing a prompt.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-11-29 18:28
Updated : 2024-02-28 11:01
NVD link : CVE-2006-6169
Mitre link : CVE-2006-6169
CVE.ORG link : CVE-2006-6169
JSON object : View
Products Affected
gnupg
- gnupg
CWE