Unrated severityNVD Advisory· Published Oct 20, 2000· Updated Jun 16, 2026
CVE-2000-0678
CVE-2000-0678
Description
PGP 5.5.x through 6.5.3 does not properly check if an Additional Decryption Key (ADK) is stored in the signed portion of a public certificate, which allows an attacker who can modify a victim's public certificate to decrypt any data that has been encrypted with the modified certificate.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:pgp:pgp:5.5.3i:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:pgp:pgp:5.5.3i:*:*:*:*:*:*:*
- cpe:2.3:a:pgp:pgp:6.5.1i:*:*:*:*:*:*:*
- cpe:2.3:a:pgp:pgp:6.5.3i:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/1606nvdPatchVendor Advisory
- www.cert.org/advisories/CA-2000-18.htmlnvdThird Party AdvisoryUS Government Resource
- www.osvdb.org/4354nvd
News mentions
0No linked articles in our index yet.