Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
putty putty 0.49 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2003-0048
PuTTY 0.53b and previous versions does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials.
Putty Putty 0.53b
Putty Putty 0.49
Putty Putty 0.53
Putty Putty 0.48
7.5
CVSSv2
CVE-2004-1440
Multiple heap-based buffer overflows in the modpow function in PuTTY prior to 0.55 allow (1) remote malicious users to execute arbitrary code via an SSH2 packet with a base argument that is larger than the mod argument, which causes the modpow function to write memory before the ...
Putty Putty 0.53
Putty Putty 0.53b
Putty Putty 0.49
Putty Putty 0.50
Putty Putty 0.51
Putty Putty 0.52
Putty Putty 0.48
Putty Putty 0.54
10
CVSSv2
CVE-2004-1008
Integer signedness error in the ssh2_rdpkt function in PuTTY prior to 0.56 allows remote malicious users to execute arbitrary code via a SSH2_MSG_DEBUG packet with a modified stringlen parameter, which leads to a buffer overflow.
Putty Putty 0.49
Putty Putty 0.50
Putty Putty 0.51
Putty Putty 0.53b
Putty Putty 0.54
Putty Putty 0.52
Putty Putty 0.53
Putty Putty 0.48
Putty Putty 0.55
Tortoisecvs Tortoisecvs 1.8
2.1
CVSSv2
CVE-2013-4208
The rsa_verify function in PuTTY prior to 0.63 (1) does not clear sensitive process memory after use and (2) does not free certain structures containing sensitive process memory, which might allow local users to discover private RSA and DSA keys.
Putty Putty 0.54
Putty Putty 0.53b
Simon Tatham Putty 0.53
Putty Putty 0.52
Putty Putty 0.61
Simon Tatham Putty
Putty Putty 0.60
Putty Putty 0.59
Putty Putty 0.47
Putty Putty 0.46
Putty Putty 0.45
Putty Putty 0.57
Putty Putty 0.55
Putty Putty 0.51
Putty Putty 0.49
Putty Putty 0.58
Putty Putty 0.56
Putty Putty 0.50
Putty Putty 0.48
6.8
CVSSv2
CVE-2013-4206
Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY prior to 0.63 allows remote SSH servers to cause a denial of service (crash) and possibly trigger memory corruption or code execution via a crafted DSA signature, which is not properly handled when performing ...
Simon Tatham Putty 0.53
Putty Putty 0.52
Putty Putty 0.51
Putty Putty 0.50
Putty Putty 0.61
Putty Putty 0.60
Putty Putty 0.59
Putty Putty 0.58
Putty Putty 0.57
Putty Putty 0.45
Putty Putty 2010-06-01
Simon Tatham Putty
Putty Putty 0.55
Putty Putty 0.53b
Putty Putty 0.49
Putty Putty 0.47
Putty Putty 0.56
Putty Putty 0.54
Putty Putty 0.48
Putty Putty 0.46
4.3
CVSSv2
CVE-2013-4207
Buffer overflow in sshbn.c in PuTTY prior to 0.63 allows remote SSH servers to cause a denial of service (crash) via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum fun...
Putty Putty 0.57
Putty Putty 0.56
Putty Putty 0.55
Putty Putty 0.54
Putty Putty 0.53b
Simon Tatham Putty
Putty Putty 0.49
Putty Putty 0.48
Putty Putty 0.47
Putty Putty 0.46
Putty Putty 0.60
Putty Putty 0.58
Putty Putty 0.52
Putty Putty 0.50
Putty Putty 0.45
Putty Putty 0.61
Putty Putty 0.59
Simon Tatham Putty 0.53
Putty Putty 0.51
Putty Putty 2010-06-01
6.8
CVSSv2
CVE-2013-4852
Integer overflow in PuTTY 0.62 and previous versions, WinSCP prior to 5.1.6, and other products that use PuTTY allows remote SSH servers to cause a denial of service (crash) and possibly execute arbitrary code in certain applications that use PuTTY via a negative size value in an...
Winscp Winscp 5.1.4
Winscp Winscp 5.1.3
Winscp Winscp 5.1.2
Winscp Winscp 5.1.1
Winscp Winscp 4.3.8
Winscp Winscp 4.3.7
Winscp Winscp 4.3.6
Winscp Winscp 3.7.6
Winscp Winscp 5.0.6
Winscp Winscp 5.0.5
Winscp Winscp 5.0.4
Winscp Winscp 5.0.3
Winscp Winscp 5.0.2
Winscp Winscp 4.2.6
Winscp Winscp 4.2.7
Winscp Winscp 4.2.8
Winscp Winscp 4.2.9
Winscp Winscp 5.0.9
Winscp Winscp 5.0.7
Winscp Winscp 5.0
Winscp Winscp 4.3.9
Winscp Winscp 3.8.2
10
CVSSv2
CVE-2002-1357
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.1ea
Cisco Ios 12.1t
Cisco Ios 12.2t
Cisco Ios 12.2
Cisco Ios 12.2s
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1e
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Putty Putty 0.53
Winscp Winscp 2.0.0
Putty Putty 0.48
Putty Putty 0.49
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
10
CVSSv2
CVE-2002-1358
Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1t
Cisco Ios 12.2
Cisco Ios 12.2s
Cisco Ios 12.1e
Cisco Ios 12.1ea
Cisco Ios 12.2t
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
Putty Putty 0.48
Putty Putty 0.49
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Putty Putty 0.53
Winscp Winscp 2.0.0
10
CVSSv2
CVE-2002-1359
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.2s
Cisco Ios 12.2t
Cisco Ios 12.1e
Cisco Ios 12.1ea
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1t
Cisco Ios 12.2
Putty Putty 0.53
Winscp Winscp 2.0.0
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
Putty Putty 0.48
Putty Putty 0.49
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »