CVE-2006-0049: CVE-2006-0049

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-0049

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

gpg in GnuPG before 1.4.2.2 does not properly verify non-detached signatures, which allows attackers to inject unsigned data via a data packet that is not associated with a control packet, which causes the check for concatenated signatures to report that the signature is valid, a different vulnerability than CVE-2006-0455.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GnuPG内置签名验证漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GnuPG是基于OpenPGP标准的PGP加密、解密、签名工具。 GnuPG在处理邮件内置的签名时存在验证漏洞，攻击者可能利用此漏洞在邮件中插入额外的数据。 GnuPG在提取已签名的数据时，数据可能前置或后缀了签名没有没有覆盖到的额外数据，这样攻击者就可以利用签名消息注入额外的任意数据。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-0049

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-0049

Please Login to view more intelligence information

http://securityreason.com/securityalert/450third-party-advisoryx_refsource_SREASON
http://securityreason.com/securityalert/568third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/19232third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19197third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/17058vdb-entryx_refsource_BID
http://secunia.com/advisories/19173third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19244third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19234third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/23790vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/19231third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19532third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19287third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19249third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19203third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2006/dsa-993vendor-advisoryx_refsource_DEBIAN
http://securitytracker.com/id?1015749vdb-entryx_refsource_SECTRACK
http://www.trustix.org/errata/2006/0014vendor-advisoryx_refsource_TRUSTIX
https://usn.ubuntu.com/264-1/vendor-advisoryx_refsource_UBUNTU
ftp://patches.sgi.com/support/free/security/advisories/20060401-01-Uvendor-advisoryx_refsource_SGI
http://www.vupen.com/english/advisories/2006/0915vdb-entryx_refsource_VUPEN
http://www.gentoo.org/security/en/glsa/glsa-200603-08.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2006:055vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0266.htmlvendor-advisoryx_refsource_REDHAT
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.476477vendor-advisoryx_refsource_SLACKWARE
http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00021.htmlvendor-advisoryx_refsource_FEDORA
http://www.securityfocus.com/archive/1/433931/100/0/threadedvendor-advisoryx_refsource_FEDORA
http://lists.suse.de/archive/suse-security-announce/2006-Mar/0003.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10063vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/25184vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/427324/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000216.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2006-0049

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-0049

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2006-0049

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-0049

III. Intelligence Information for CVE-2006-0049

IV. Related Vulnerabilities

V. Comments for CVE-2006-0049

Leave a comment