The host is installed with GnuPG 1.x before 1.4.16 and Gpg4win and is prone to information disclosure vulnerability. A flaws is present in the application, which is caused by generation of RSA keys using sequences of introductions with certain patterns that introduce a side channel, which allows physically-proximate attackers to extract RSA keys via a chosen-ciphertext attack and acoustic cryptanalysis during decryption. Successful exploitation allows attackers to gain sensitive information.