Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PGP Desktop 10.0.x before 10.0.3 SP2 and 10.1.0 before 10.1.0 SP1 does not properly implement the "Decrypt/Verify File via Right-Click" functionality for multi-packet OpenPGP messages that represent multi-message input, which allows remote attackers to spoof signed data by concatenating an additional message to the end of a legitimately signed message, related to a "piggy-back" or "unsigned data injection" issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PGP Desktop加密问题漏洞
Vulnerability Description
PGP Desktop 是一款强大的加密软件,具备文件、文件夹、邮件、即时通讯等加密功能。 PGP Desktop 10.0.3 SP2之前的10.0.x版本以及10.1.0 SP1之前的10.1.0版本不能正确地为表示多消息输入的多包OpenPGP消息实现"Decrypt/Verify File via Right-Click"功能。远程攻击者可以通过把附加消息连接到合法签署消息的末端的方式欺骗签署的数据。该漏洞与"piggy-back"或者"未签署数据注入"问题有关。
CVSS Information
N/A
Vulnerability Type
N/A