FreeBSD : putty -- buffer overflow vulnerability in ssh2 support (159)

The following package needs to be updated: putty %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg19518d222d0511d989430050fc56d258.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-20...

PuTTY SSH2 buffer overflow

Buffer overflow on SSH2MSGDEBUG packet processing...

GLSA-200410-29 : PuTTY: Pre-authentication buffer overflow

The remote host is affected by the vulnerability described in GLSA-200410-29 PuTTY: Pre-authentication buffer overflow PuTTY fails to do proper bounds checking on SSH2MSGDEBUG packets. The 'stringlen' parameter value is incorrectly checked due to signedness issues. Note that this vulnerability is...

PuTTY: Pre-authentication buffer overflow

Background PuTTY is a free implementation of Telnet and SSH for Win32 and Unix platforms, along with an xterm terminal emulator. Description PuTTY fails to do proper bounds checking on SSH2MSGDEBUG packets. The "stringlen" parameter value is incorrectly checked due to signedness issues. Note that...

putty -- buffer overflow vulnerability in ssh2 support

There is a bug in SSH2 support that allows a server to execute malicious code on a connecting PuTTY client. This attack can be performed before host key verification happens, so a different machine -- man in the middle attack -- could fake the machine you are connecting to...

GLSA-200408-04 : PuTTY: Pre-authentication arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-200408-04 PuTTY: Pre-authentication arbitrary code execution PuTTY contains a vulnerability allowing a malicious server to execute arbitrary code on the connecting client before host key verification. Impact : When connecting to a...

Putty < 0.54 SSH2 Authentication Password Persistence Weakness

Binary data 1999.prm...

PuTTY: Pre-authentication arbitrary code execution

Background PuTTY is a free implementation of Telnet and SSH for Win32 and Unix platforms, along with an xterm terminal emulator. Description PuTTY contains a vulnerability allowing a malicious server to execute arbitrary code on the connecting client before host key verification. Impact When...

Cisco SSH2 Server/Client Malformed Packet Remote DoS (CSCdz60229, CSCdy87221, CSCdu75477)

It is possible to make the remote IOS crash when sending it malformed SSH packets during the key exchange. These flaws are documented as CISCO bug ID CSCdz60229, CSCdy87221 and CSCdu75477. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11383; scriptversion"1.29";...

CVE-2003-0047

SSH2 clients for VanDyke 1 SecureCRT 4.0.2 and 3.4.7, 2 SecureFX 2.1.2 and 2.0.4, and 3 Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials...

CVE-2003-0046

AbsoluteTelnet SSH2 client does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials...

CVE-2003-0047

SSH2 clients for VanDyke 1 SecureCRT 4.0.2 and 3.4.7, 2 SecureFX 2.1.2 and 2.0.4, and 3 Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials...

CVE-2003-0046

The CVE-2003-0046 issue affects the AbsoluteTelnet SSH2 client, where credentials (including plaintext passwords) are not scrubbed from memory. A memory dump attacker can recover logon credentials from process memory. According to the connected advisories, vulnerable versions include AbsoluteTeln...

CVE-2003-0046

AbsoluteTelnet SSH2 client does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials...

silc question - insecure memory

Good Evening, while screwing around tonight checking memory for the SSH2 advisory. I noticed passphrase and complete sessions from silc in memory. I dont know if this is normal for silc I wouldnt think it would be but all you need to do it is: cdowns@Vader:$ sudo dd if=/dev/mem...

Weak password encryption in memory for multiple SSH2 clients

User's password stays in memory uinecnrypted...

iDEFENSE Security Advisory 01.28.03: SSH2 Clients Insecurely Store Passwords

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 01.28.03: SSH2 Clients Insecurely Store Passwords AbsoluteTelnet, SecureCRT, Entunnel, SecureFx, and PuTTY http://www.idefense.com/advisory/01.28.03.txt January 28, 2003 I. BACKGROUND PuTTY is a free implementation of Telnet...

CVE-2002-1360

Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote attackers to cause a denial of service or possibly execute arbitrary code due to interactions with the use of null-terminat...

CVE-2002-1359

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite...

CVE-2002-1358

Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite...