putty -- pscp/psftp heap corruption vulnerabilities

Description:

Simon Tatham reports:

This version fixes a security hole in previous versions of PuTTY, which can allow a malicious SFTP server to attack your client. If you use either PSCP or PSFTP, you should upgrade. Users of the main PuTTY program are not affected. (However, note that the server must have passed host key verification before this attack can be launched, so a man-in-the-middle shouldn't be able to attack you if you're careful.)

References:

BugTraq ID 12601
CVE name CVE-2005-0467
List post: <http://lists.tartarus.org/pipermail/putty-announce/2005/000012.html>(search)
List post: <http://marc.theaimsgroup.com/?l=bugtraq&m=110902510713763>(search)
URL: <http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-sftp-readdir.html>
URL: <http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-sftp-string.html>

Affects:

putty <0.57

portaudit: putty -- pscp/psftp heap corruption vulnerabilities

Disclaimer: The data contained on this page is derived from the VuXML document, please refer to the the original document for copyright information. The author of portaudit makes no claim of authorship or ownership of any of the information contained herein.

If you have found a vulnerability in a FreeBSD port not listed in the database, please contact the FreeBSD Security Officer. Refer to "FreeBSD Security Information" for more information.

Oliver Eikemeier <eik@FreeBSD.org>