Total vulnerabilities in the database
Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service (crash) and possibly trigger memory corruption or code execution via a crafted DSA signature, which is not properly handled when performing certain bit-shifting operations during modular multiplication.
| Software | From | Fixed in |
|---|---|---|
| putty / putty | 0.50 | 0.50.x |
| putty / putty | 0.49 | 0.49.x |
| putty / putty | 0.51 | 0.51.x |
| simon_tatham / putty | 0.53 | 0.53.x |
| putty / putty | 0.55 | 0.55.x |
| simon_tatham / putty | - | 0.62.x |
| putty / putty | 0.53b | 0.53b.x |
| putty / putty | 0.52 | 0.52.x |
| putty / putty | 0.48 | 0.48.x |
| putty / putty | 0.54 | 0.54.x |
| putty / putty | 0.45 | 0.45.x |
| putty / putty | 0.46 | 0.46.x |
| putty / putty | 0.47 | 0.47.x |
| putty / putty | 0.56 | 0.56.x |
| putty / putty | 0.57 | 0.57.x |
| putty / putty | 0.58 | 0.58.x |
| putty / putty | 0.59 | 0.59.x |
| putty / putty | 0.60 | 0.60.x |
| putty / putty | 0.61 | 0.61.x |
| putty / putty | 2010-06-01-r8967 | 2010-06-01-r8967.x |