PuTTY Multiple Vulnerabilities

Last Update Date: 6 Aug 2013 10:26 Release Date: 6 Aug 2013 3370 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

 Vulnerabilities has been identified in PuTTY, which can be exploited by malicious people to potentially compromise a user's system.

 

The vulnerabilities are caused due to some integer overflow errors when handling the SSH handshake and can be exploited to cause heap-based buffer overflows via a negative handshake message length.

 

Successful exploitation of may allow execution of arbitrary code, but requires tricking the user into connecting to a malicious server

Impact

  • Remote Code Execution

System / Technologies affected

  • PuTTY version 0.62. Prior versions may also be affected.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Fixed in the source code repository.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Joomla! Arbitrary File Upload Vulnerability

5 Aug 2013 3334 Views

Next

Cisco TelePresence System Default Credentials Vulnerability

8 Aug 2013 3291 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY