October 1, 2001

PGP Keyserver permissions misconfiguration

Author: JT Smith

Posted at Help Net Security: "PGP Keyserver, distributed by Network Associates, is configured using administrative
web interface. It is necessary to authenticate username and password in order to
access the administrative web interface.

However, PGP Keyserver has a vulnerability that allows unauthorized users to change
settings."

Category:

  • Linux
Click Here!