Lucene search

K

PRIOn knowledge basePRION:CVE-2013-4852

HistoryAug 19, 2013 - 11:55 p.m.

Integer overflow

2013-08-1923:55:00

PRIOn knowledge base

www.prio-n.com

2

8.4 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

Integer overflow in PuTTY 0.62 and earlier, WinSCP before 5.1.6, and other products that use PuTTY allows remote SSH servers to cause a denial of service (crash) and possibly execute arbitrary code in certain applications that use PuTTY via a negative size value in an RSA key signature during the SSH handshake, which triggers a heap-based buffer overflow.

CPENameOperatorVersion
debian_linuxeq7.1
debian_linuxeq7.0
debian_linuxeq6.0
opensuseeq12.3
puttyeq0.50
puttyeq0.49
puttyeq0.51
puttyeq0.55
puttyeq0.53.98
puttyeq0.52

Rows per page:

1-10 of 571

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=718779

lists.opensuse.org/opensuse-updates/2013-08/msg00035.html

lists.opensuse.org/opensuse-updates/2013-08/msg00041.html

secunia.com/advisories/54379

secunia.com/advisories/54517

secunia.com/advisories/54533

svn.tartarus.org/sgt?view=revision&sortby=date&revision=9896

winscp.net/tracker/show_bug.cgi?id=1017

www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-signature-stringlen.html

www.debian.org/security/2013/dsa-2736

www.search-lab.hu/advisories/secadv-20130722

8.4 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

Related for PRION:CVE-2013-4852

securityvulns3 nessus13 kaspersky3 seebug1 debiancve1 cvelist1 nvd1 ubuntucve1 openvas15 cve1 gentoo2 mageia1 freebsd1 fedora4 debian2 osv1