CVE-2001-1252

Name of the Vulnerable Software and Affected Versions: Network Associates PGP Keyserver version 7.0

Description: The issue allows remote attackers to bypass authentication and access the administrative web interface. This is achieved by directly accessing cgi-bin instead of keyserver/cgi-bin for certain programs, including console, cs, multi config, and directory.

Recommendations: For Network Associates PGP Keyserver version 7.0, consider restricting access to the cgi-bin directory to prevent unauthorized access to the administrative web interface until a patch is available. As a temporary workaround, limit the use of the affected programs console, cs, multi config, and directory to minimize the risk of exploitation.