Signature Verification Bypass in GnuPG (gpg) 1.0.3

Signature Verification Bypass in GnuPG (gpg) 1.0.3

CVE-2000-0974 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

GnuPG (gpg) 1.0.3 does not properly check all signatures of a file containing multiple documents, which allows an attacker to modify contents of all documents but the first without detection.

Learn more about our Web Application Penetration Testing UK.