Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.PUTTY_062.NASL
HistoryDec 21, 2011 - 12:00 a.m.

PuTTY Password Local Information Disclosure

2011-12-2100:00:00
This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

The remote host has an installation of PuTTY between 0.59 and 0.61, inclusive. Such versions are known to contain an information disclosure issue, where PuTTY neglects to wipe passwords from memory that it no longer requires.

Note that to exploit this vulnerability, a malicious, local process must have permission to access the memory assigned to the PuTTY process.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(57365);
  script_version("1.8");
  script_cvs_date("Date: 2018/11/26 11:02:16");

  script_cve_id("CVE-2011-4607");
  script_bugtraq_id(51021);

  script_name(english:"PuTTY Password Local Information Disclosure");
  script_summary(english:"Checks the version of PuTTY.");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host has an SSH client that is affected by an
information disclosure vulnerability.");
  script_set_attribute(attribute:"description", value:
"The remote host has an installation of PuTTY between 0.59 and 0.61,
inclusive.  Such versions are known to contain an information
disclosure issue, where PuTTY neglects to wipe passwords from memory
that it no longer requires. 

Note that to exploit this vulnerability, a malicious, local process
must have permission to access the memory assigned to the PuTTY
process.");

  script_set_attribute(attribute:"solution", value:"Upgrade to PuTTY version 0.62.0.0 or later.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2011-4607");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  # http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/password-not-wiped.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d29e474b");

  script_set_attribute(attribute:"vuln_publication_date", value:"2011/12/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2011/12/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/12/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:simon_tatham:putty");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("putty_installed.nasl");
  script_require_keys("installed_sw/PuTTY", "SMB/Registry/Enumerated");

  exit(0);
}

include("vcf.inc");

get_kb_item_or_exit("SMB/Registry/Enumerated");

app_info = vcf::get_app_info(app:"PuTTY", win_local:TRUE);

constraints = [
  { "min_version" : "0.59", "fixed_version" : "0.62" }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_NOTE);
VendorProductVersionCPE
simon_tathamputtycpe:/a:simon_tatham:putty

Related

cve 1
openvas 6
debiancve 1
nessus 3
kaspersky 1
ubuntucve 1
nvd 1
prion 1
freebsd 1
cvelist 1
gentoo 1
debian 2
osv 1
securityvulns 1
cve
cve
CVE-2011-4607
2022-10-03 16:15:14
openvas
openvas
PuTTY Information Disclosure Vulnerability - Windows
2013-08-26 00:00:00
FreeBSD Ports: putty
2012-02-13 00:00:00
FreeBSD Ports: putty
2012-02-13 00:00:00
debiancve
debiancve
CVE-2011-4607
2022-10-03 16:15:14
nessus
nessus
FreeBSD : PuTTY -- Password vulnerability (bbd5f486-24f1-11e1-95bc-080027ef73ec)
2011-12-13 00:00:00
GLSA-201308-01 : PuTTY: Multiple Vulnerabilities
2013-08-22 00:00:00
Debian DSA-2736-1 : putty - several vulnerabilities
2013-08-13 00:00:00
kaspersky
kaspersky
KLA11441 OSI vulnerability in PuTTy
2013-08-23 00:00:00
ubuntucve
ubuntucve
CVE-2011-4607
2013-08-23 00:00:00
nvd
nvd
CVE-2011-4607
2013-08-23 16:55:06
prion
prion
Authentication flaw
2013-08-23 16:55:00
freebsd
freebsd
PuTTY -- Password vulnerability
2011-12-10 00:00:00
cvelist
cvelist
CVE-2011-4607
2022-10-03 16:15:14
gentoo
gentoo
PuTTY: Multiple Vulnerabilities
2013-08-21 00:00:00
debian
debian
[SECURITY] [DSA 2736-1] putty security update
2013-08-11 19:49:26
[SECURITY] [DSA 2736-1] putty security update
2013-08-11 19:49:26
osv
osv
putty - several
2013-08-11 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2736-1] putty security update
2013-08-14 00:00:00

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for PUTTY_062.NASL
cve1openvas6debiancve1nessus3kaspersky1ubuntucve1nvd1prion1freebsd1cvelist1gentoo1debian2osv1securityvulns1