CVE-2000-0445
Pgp Pgp — NVD-CWE-Other
- Published: 2000-05-24T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- Vendors: Pgp
- Products: Pgp
- CWE: NVD-CWE-Other
CVE-2000-0445 — The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No items for this vendor.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.
🧠 Explainer: What this vulnerability means
Summary: The issue in Pgp by Pgp (CWE: unspecified) may enable attacks.
Impact: It may allow privilege escalation, data exposure, or service interruption.
Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.
- http://archives.neohapsis.com/archives/bugtraq/2000-05/0273.html []
- http://www.cert.org/advisories/CA-2000-09.html [US Government Resource]
- http://www.osvdb.org/1355 []
- http://www.securityfocus.com/bid/1251 []
- http://archives.neohapsis.com/archives/bugtraq/2000-05/0273.html []
- http://www.cert.org/advisories/CA-2000-09.html [US Government Resource]
- http://www.osvdb.org/1355 []
- http://www.securityfocus.com/bid/1251 []
No explicit mitigation/advisory links found in references.