Lucene search
K

12 matches found

OSV
OSV
added 2015/12/07 8:59 p.m.4 views

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

8.1AI score
Exploits0References7
CVE
CVE
added 2015/12/07 8:0 p.m.77 views

CVE-2015-5309

PuTTY before 0.66 contains a memory‑corrupting integer overflow in handling the ECH (erase characters) escape sequence, allowing a remote attacker to cause DoS or potentially execute arbitrary code via a large parameter value. This affects PuTTY’s terminal emulator. Debian advisories (DSA-3409) a...

4.3CVSS9.8AI score0.03467EPSS
Exploits0References7Affected Software2
Debian CVE
Debian CVE
added 2015/12/07 8:0 p.m.41 views

CVE-2015-5309

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via an ECH erase characters escape sequence with a large parameter value, which triggers a buffer underflow...

4.3CVSS9.8AI score0.03467EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/12/02 12:0 a.m.26 views

Fedora Update for putty FEDORA-2015-5

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS9.5AI score0.03467EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/12/02 12:0 a.m.34 views

Debian DSA-3409-1 : putty - security update

A memory-corrupting integer overflow in the handling of the ECH erase characters control sequence was discovered in PuTTY's terminal emulator. A remote attacker can take advantage of this flaw to mount a denial of service or potentially to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable...

4.3CVSS8.7AI score0.03467EPSS
Exploits0References4
Debian
Debian
added 2015/12/01 8:39 p.m.27 views

[SECURITY] [DSA 3409-1] putty security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3409-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 01, 2015 https://www.debian.org/security/faq -...

4.3CVSS3.3AI score0.03467EPSS
Exploits0
Debian
Debian
added 2015/12/01 8:39 p.m.26 views

[SECURITY] [DSA 3409-1] putty security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3409-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 01, 2015 https://www.debian.org/security/faq -...

4.3CVSS6.9AI score0.03467EPSS
Exploits0
Debian
Debian
added 2015/11/24 10:7 p.m.27 views

[SECURITY] [DLA 347-1] putty security update

Package : putty Version : 0.60+2010-02-20-1+squeeze4 CVE ID : CVE-2015-5309 It was discovered that PuTTYs terminal emulator did not properly validate the parameter to the ECH erase characters control sequence, allowing a denial of service and possibly remote code execution...

4.3CVSS7.5AI score0.03467EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/11/19 12:0 a.m.27 views

openSUSE Security Update : putty (openSUSE-2015-766)

PuTTY was updated to 0.66 to fix security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-5309: Malicious ECH control sequences could have caused an integer overflow, buffer underrun in terminal emulator bnc954191 Also contains all bug fixes up to the 0.66 release...

4.3CVSS8.5AI score0.03467EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/11/11 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2015-0442)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS9.5AI score0.03467EPSS
Exploits0References5
OSV
OSV
added 2015/11/10 9:26 p.m.8 views

MGASA-2015-0442 Updated putty packages fix security vulnerability

Versions of PuTTY 0.54 and 0.65 inclusive have a potentially memory-corrupting integer overflow in the handling of the ECH erase characters control sequence in the terminal emulator CVE-2015-5309...

4.3CVSS6.5AI score0.03467EPSS
Exploits0References4
Mageia
Mageia
added 2015/11/10 9:26 p.m.33 views

Updated putty packages fix security vulnerability

Versions of PuTTY 0.54 and 0.65 inclusive have a potentially memory-corrupting integer overflow in the handling of the ECH erase characters control sequence in the terminal emulator CVE-2015-5309...

4.3CVSS9.3AI score0.03467EPSS
Exploits0References3
Rows per page
Query Builder