CVE-2021-28847

MobaXterm before 21.0 allows remote servers to cause a denial of service Windows GUI hang via tab title change requests that are sent repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls...

Linux Distros Unpatched Vulnerability : CVE-2021-33500

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PuTTY before 0.75 on Windows allows remote servers to cause a denial of service Windows GUI hang by telling the PuTTY window to change its title repeatedly at...

CVE-2021-33500

PuTTY before 0.75 on Windows allows remote servers to cause a denial of service Windows GUI hang by telling the PuTTY window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. NOTE: the same attack methodology may affect some OS-level GUIs ...

CVE-2024-56803

Ghostty is a cross-platform terminal emulator. Ghostty, as allowed by default in 1.0.0, allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious...

CVE-2021-32198

EmTec ZOC through 8.02.4 allows remote servers to cause a denial of service Windows GUI hang by telling the ZOC window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. In other words, it does not implement a usleep or similar delay upon...

Mintty 安全漏洞

Mintty is an application software Cygwin terminal emulator, also available for MSYS and Msys2. Mintty has a security vulnerability that can be exploited by an attacker to cause a denial of service Windows GUI hang by telling the Mintty window to repeatedly change its title at high speed, which...

PuTTY 安全漏洞

PuTTY is a suite of free Telnet, Rlogin and SSH client software from the individual developer Simon Tatham. The software is primarily used for remote administration of Linux systems. A security vulnerability exists in PuTTY versions prior to 0.75, which stems from allowing a remote server to caus...

PT-2021-4283 · Putty +1 · Putty +1

Name of the Vulnerable Software and Affected Versions: PuTTY versions prior to 0.75 Description: The issue allows remote servers to cause a denial of service by repeatedly changing the PuTTY window title at high speed, resulting in many SetWindowTextA or SetWindowTextW calls. This can cause the...

(Plone): Anonymous users can batch change titles of content items

It was discovered that Plone, included as a part of luci, allowed a remote anonymous user to change titles of content items due to improper permissions checks...

Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation. WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through patchlevel 248, 1.8.8dev, 1.9.1 through patchlevel 376, and 1.9.2dev writes data to a log file without sanitizing non-printable characters, whi...