2 matches found
PuTTY < 0.67 PSCP Server Header Handling Stack Buffer Overflow
The remote host has a version of PuTTY installed that is prior to 0.67. It is, therefore, affected by a stack-based buffer overflow related to handling SCP-SINK file-size responses that could allow arbitrary code execution. C Tenable Network Security, Inc. include"compat.inc"; if description...
MGASA-2016-0118 Updated filezilla packages fix security vulnerability
Many versions of PSCP in PuTTY prior to 0.67 have a stack corruption vulnerability in their treatment of the 'sink' direction i.e. downloading from server to client of the old-style SCP protocol. In order for this vulnerability to be exploited, the user must connect to a malicious server and...