CVE-2006-3082

CVE-2006-3082 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

parse-packet.c in GnuPG (gpg) 1.4.3 and 1.9.20, and earlier versions, allows remote attackers to cause a denial of service (gpg crash) and possibly overwrite memory via a message packet with a large length (long user ID string), which could lead to an integer overflow, as demonstrated using the --no-armor option.

Learn more about our User Device Pen Test.