PuTTY SSH2 Authentication Password Persistence Weakness Network Vulnerability

Summary

PuTTY is a free SSH client. It has been reported that this version does not safely handle password information. As a result, a local user may be able to recover authentication passwords.

Solution

Upgrade to the newest version of PuTTY

Severity

Classification

CVE CVE-2003-0048

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Detect the HTTP RPC endpoint mapper
Orbit Downloader File Deletion ActiveX Vulnerability
Microsoft Internet Explorer Anti-XSS Filter Vulnerabilities
Opera web browser large javaScript array handling vulnerability
Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability

PuTTY SSH2 authentication password persistence weakness

Take action and discover your vulnerabilities