VYPR
Unrated severityNVD Advisory· Published Oct 20, 2000· Updated Jun 16, 2026

CVE-2000-0678

CVE-2000-0678

Description

PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim's public certificate to decrypt any data that has been encrypted with the modified certificate.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:pgp:pgp:5.5.3i:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:pgp:pgp:5.5.3i:*:*:*:*:*:*:*
    • cpe:2.3:a:pgp:pgp:6.5.1i:*:*:*:*:*:*:*
    • cpe:2.3:a:pgp:pgp:6.5.3i:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.