Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-4607
HistoryAug 23, 2013 - 12:00 a.m.

CVE-2011-4607

2013-08-2300:00:00
ubuntu.com
ubuntu.com
8

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

EPSS

0

Percentile

5.1%

PuTTY 0.59 through 0.61 does not clear sensitive process memory when
managing user replies that occur during keyboard-interactive
authentication, which might allow local users to read login passwords by
obtaining access to the process’ memory.

Bugs

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

EPSS

0

Percentile

5.1%