CVE-2004-1008

Severity

99%

Complexity

99%

Confidentiality

165%

Integer signedness error in the ssh2_rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2_MSG_DEBUG packet with a modified stringlen parameter, which leads to a buffer overflow.

Integer signedness error in the ssh2_rdpkt function in PuTTY before 0.56 allows remote attackers to execute arbitrary code via a SSH2_MSG_DEBUG packet with a modified stringlen parameter, which leads to a buffer overflow.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

PuTTY

First reported 20 years ago

2005-01-10 05:00:00

Last updated 7 years ago

2017-07-11 01:30:00

Affected Software

PuTTY 0.48

0.48

PuTTY 0.49

0.49

PuTTY 0.50

0.50

PuTTY 0.51

0.51

PuTTY 0.52

0.52

PuTTY 0.53

0.53

PuTTY 0.53b

0.53b

PuTTY 0.54

0.54

PuTTY 0.55

0.55

References

20041027 PuTTY SSH client vulnerability

12987

13012

17214

http://www.chiark.greenend.org.uk/~sgtatham/putty/

GLSA-200410-29

Patch, Vendor Advisory

20041027 PuTTY SSH2_MSG_DEBUG Buffer Overflow Vulnerability

11549

Patch, Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=ssg1S1002414

http://www-1.ibm.com/support/docview.wss?uid=ssg1S1002416

putty-ssh2msgdebug-bo(17886)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.