Lucene search
HistoryAug 23, 2013 - 4:55 p.m.
CVE-2011-4607
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
PuTTY 0.59 through 0.61 does not clear sensitive process memory when managing user replies that occur during keyboard-interactive authentication, which might allow local users to read login passwords by obtaining access to the process’ memory.
Affected configurations
Node
puttyputtyMatch0.59
ORputtyputtyMatch0.60
ORputtyputtyMatch0.61
Related
nessus
nessus
PuTTY Password Local Information Disclosure
2011-12-21 00:00:00
GLSA-201308-01 : PuTTY: Multiple Vulnerabilities
2013-08-22 00:00:00
openvas
openvas
FreeBSD Ports: putty
2012-02-13 00:00:00
PuTTY Information Disclosure Vulnerability - Windows
2013-08-26 00:00:00
FreeBSD Ports: putty
2012-02-13 00:00:00
ubuntucve
ubuntucve
CVE-2011-4607
2013-08-23 00:00:00
kaspersky
kaspersky
KLA11441 OSI vulnerability in PuTTy
2013-08-23 00:00:00
cve
cve
CVE-2011-4607
2022-10-03 16:15:14
debiancve
debiancve
CVE-2011-4607
2022-10-03 16:15:14
prion
prion
Authentication flaw
2013-08-23 16:55:00
freebsd
freebsd
PuTTY -- Password vulnerability
2011-12-10 00:00:00
cvelist
cvelist
CVE-2011-4607
2022-10-03 16:15:14
gentoo
gentoo
PuTTY: Multiple Vulnerabilities
2013-08-21 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2736-1] putty security update
2013-08-14 00:00:00
debian
debian
[SECURITY] [DSA 2736-1] putty security update
2013-08-11 19:49:26
[SECURITY] [DSA 2736-1] putty security update
2013-08-11 19:49:26
osv
osv
putty - several
2013-08-11 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2011-4607