KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2001-09-12T04:00:00
Updated: 2024-08-01T17:11:01.676Z
Reserved: 2001-08-31T00:00:00
Link: CVE-1999-1270
Vulnrichment
No data.
NVD
Status : Modified
Published: 1998-07-11T04:00:00.000
Modified: 2017-12-19T02:29:06.440
Link: CVE-1999-1270
Redhat
No data.