CVEs-PoC/2019/CVE-2019-13050.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 02:45:46 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.

POC

Reference

https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/alphaSeclab/sec-daily-2019
https://github.com/hannob/pgpbugs
https://github.com/nedenwalker/spring-boot-app-using-gradle
https://github.com/nedenwalker/spring-boot-app-with-log4j-vuln
https://github.com/simonsdave/clair-cicd

1.1 KiB Raw Blame History

CVE-2019-13050

Description

POC

Reference

Github

1.1 KiB

Raw Blame History