Vulnerabilities

CVE-2013-4206

by Fred · 19/08/2013

Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service (crash) and possibly trigger memory corruption or code execution via a crafted DSA signature, which is not properly handled when performing certain bit-shifting operations during modular multiplication.

Date published : 2013-08-19

http://svn.tartarus.org/sgt/putty/sshbn.c?sortby=date&r1=9977&r2=9976&pathrev=9977

http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-modmul.html

Similar

Tags: Cybersecurity Alert