BleepingComputer.com > Critical Flaw Found In Gpg

Full Version: Critical Flaw Found In Gpg

BleepingComputer.com > Security > Breaking Virus & Security News

Walkman

Mar 10 2007, 06:39 AM

9 March 2007

A serious flaw was found in opensource encryption software GNU Privacy Guard (GPG).

It allows a cybercriminal to launch a phishing attack. The flaw allows to insert text in trusted e-mail. Ivan Arce from Core Security, who discovered the vulnerability says attacker can insert malware or lead user to malicious website. Arce decided to inform of the flaw because it was patched two weeks ago.

It affects email clients like Kmail, Evolution, Sylpheed, Mutt and GNUMail, so its users should install patches as soon as possible.

Source:
http://www.arcabit.com/infobase.html?show=...ion&id=1154

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.