4 matches found
CVE-2004-1008
Integer signedness error in the ssh2rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2MSGDEBUG packet with a modified stringlen parameter, which leads to a buffer overflow...
CVE-2004-1008
Integer signedness error in the ssh2rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2MSGDEBUG packet with a modified stringlen parameter, which leads to a buffer overflow...
CVE-2004-1008
Integer signedness error in the ssh2rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2MSGDEBUG packet with a modified stringlen parameter, which leads to a buffer overflow...
CVE-2004-1008
CVE-2004-1008 affects PuTTY prior to 0.56. An integer signedness error in the ssh2_rdpkt function allows an attacker to trigger a buffer overflow via a crafted SSH2_MSG_DEBUG packet (modified stringlen). This enables remote code execution. Remediation: upgrade PuTTY to 0.56 or newer (patched vers...