Rating: 0

tl;dr: triggering a buffer overflow yields a signature sig(0) for 0 where sig(0) != 0^d mod N and gcd(sig(0), N) == p, allowing us to factor N and thus recover the private key