CVE-2001-1320

Name of the Vulnerable Software and Affected Versions: Network Associates PGP Keyserver version 7.0

Description: The issue allows remote attackers to cause a denial of service, potentially leading to a crash, and may also enable the execution of arbitrary code through exceptional BER encodings. This could be related to buffer overflows, as demonstrated by the PROTOS LDAPv3 test suite.

Recommendations: For Network Associates PGP Keyserver version 7.0, consider applying configuration changes to restrict access to the server until a patch is available. As a temporary workaround, restrict the use of exceptional BER encodings to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.