CVE-2021-28848

Mintty before 3.4.5 allows remote servers to cause a denial of service Windows GUI hang by telling the Mintty window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. In other words, it does not implement a usleep or similar delay upon...

CVE-2021-28847

MobaXterm before 21.0 allows remote servers to cause a denial of service Windows GUI hang via tab title change requests that are sent repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls...

CVE-2021-32198

CVE-2021-32198 affects EmTec ZOC up to version 8.02.4. A remote attacker can cause a denial of service (Windows GUI hang) by instructing the ZOC window to rapidly change its title, producing a flood of SetWindowTextA/SetWindowTextW calls due to no delay. The issue is documented with a high/critic...

Code injection

PuTTY before 0.75 on Windows allows remote servers to cause a denial of service Windows GUI hang by telling the PuTTY window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. NOTE: the same attack methodology may affect some OS-level GUIs ...

CVE-2021-33500

PuTTY before 0.75 on Windows is vulnerable to a Denial of Service where a remote server repeatedly changes the window title at high speed, causing many SetWindowTextA/SetWindowTextW calls and a Windows GUI hang. The attack methodology may affect some OS-level GUIs on Linux or other platforms. CVE...