CVE-2004-1440

Multiple heap-based buffer overflows in the modpow function in PuTTY before 0.55 allow (1) remote attackers to execute arbitrary code via an SSH2 packet with a base argument that is larger than the mod argument, which causes the modpow function to write memory before the beginning of its buffer, and (2) remote malicious servers to cause a denial of service (client crash) and possibly execute arbitrary code via a large bignum during authentication.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-1440
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
putty / putty	0.53	0.53.x
putty / putty	0.50	0.50.x
putty / putty	0.49	0.49.x
putty / putty	0.51	0.51.x
putty / putty	0.53b	0.53b.x
putty / putty	0.52	0.52.x
putty / putty	0.48	0.48.x
putty / putty	0.54	0.54.x

http://marc.info/?l=bugtraq&m=109167869528138&w=2
http://secunia.com/advisories/12212/
http://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-modpow.html
http://www.gentoo.org/security/en/glsa/glsa-200408-04.xml
http://www.securityfocus.com/bid/10850
https://exchange.xforce.ibmcloud.com/vulnerabilities/16885

Vulnerability Database

289,599

CVE-2004-1440