PGP Invalid Key Display Vulnerability

PGP Security provides privacy and data confidentiality software.

There is a vulnerability in some of PGP's display of key validity which could allow a user to be tricked into accepting a key associated with an invalid user ID.

Attackers may be able to forge signatures if the key is accepted into the target's keyring.


 

Privacy Statement
Copyright 2010, SecurityFocus