Fedora 39 : putty (2024-cba85cc558)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-cba85cc558 advisory. Security fix for CVE-2024-31497. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

PT-2024-2774

Name of the Vulnerable Software and Affected Versions PuTTY versions 0.68 through 0.80 FileZilla versions 3.24.1 through 3.66.5 WinSCP versions 5.9.5 through 6.3.2 TortoiseGit versions 2.4.0.2 through 2.15.0 TortoiseSVN versions 1.10.0 through 1.14.6 Description The issue is related to biased ECD...

Gentoo Security Advisory GLSA 201308-01

Gentoo Linux Local Security Checks GLSA 201308-01 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

WinSCP < 5.1.7 Multiple Vulnerabilities

The WinSCP program installed on the remote host is a version prior to 5.1.7. It therefore contains code from PuTTY that is affected by the following vulnerabilities related to PuTTY : - An overflow error exists that allows heap corruption when handling DSA signatures. CVE-2013-4206 - A buffer...

CVE-2006-7162

PuTTY 0.59 and earlier uses weak file permissions for 1 ppk files containing private keys generated by puttygen and 2 session logs created by putty, which allows local users to gain sensitive information by reading these files...

iDEFENSE Security Advisory 02.21.05: Multiple PuTTY SFTP Client Packet Parsing Integer Overflow Vulnerabilities

Multiple PuTTY SFTP Client Packet Parsing Integer Overflow Vulnerabilities iDEFENSE Security Advisory 02.21.05: www.idefense.com/application/poi/display?id=201&type=vulnerabilities February 21, 2005 I. BACKGROUND PuTTY is a free implementation of Telnet and SSH for Win32 and Unix platforms, along...

CVE-2005-0467

Multiple integer overflows in the 1 sftppktgetstring and 2 fxpreaddirrecv functions in the PSFTP and PSCP clients for PuTTY 0.56, and possibly earlier versions, allow remote malicious web sites to execute arbitrary code via SFTP responses that corrupt the heap after insufficient memory has been...

CORE-2004-0705: Vulnerabilities in PuTTY and PSCP

Core Security Technologies Advisory http://www.coresecurity.com Vulnerabilities in PuTTY and PSCP Date Published: 2004-08-04 Last Update: 2004-08-04 Advisory ID: CORE-2004-0705 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: Vulnerabilities in PuTTY and PSCP Class:...