Windows PGP 7.0.3及其早期版本的ASCII Armor解析器存在漏洞。攻击者可以借助畸形ASCII装甲文件在任意位置创建文件。
Network Associates has released a patch which rectifies this issue. The patch is for PGP under the Windows platform for Freeware version 7.0.3 and Desktop Security version 7.0.4: Network Associates PGP 7.0.3
ASCII Armor is a text based encoding format used by PGP (Pretty Good Privacy). While it is possible to encode any file using ASCII Armor, it is used by PGP to encode signature files and public keys to facilitate transmission in e-mail messages.
When a user opens a document for verification in PGP, its corresponding .sig file must be decoded from ASCII Armor.
Due to a flaw in the implementation of the decoder, an arbitrary file can be created on a users system. The file created would be of the attackers choice.
PGP contains a flaw that allows a remote attacker to potentially execute arbitrary code. The issue is due to the ASCII armor parser exctracting binary files which may contain .DLL files, which Windows operating systems can be tricked into executing. If an attacker sends a specially crafted armored attachment, this would allow them to execute arbitrary code or commands via the malicious DLL.
Currently, there are no known workarounds or upgrades to correct this issue. However, PGP Corporation has released a patch to address this vulnerability.