Summary
PuTTY is a free SSH client.
This version contains a flaw that may allow a malicious user to insert arbitrary commands and execute them.
The issue is triggered when an attacker sends commands, preceded by terminal emulator escape sequences.
It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.
Solution
Upgrade to version 0.54 or newer
Severity
Classification
-
CVE CVE-2003-0069 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Acrobat 9 PDF Document Encryption Weakness Vulnerability (Win)
- Adobe Flash Player 9.0.115.0 and earlier vulnerability (Win)
- Microsoft Autorun Arbitrary Code Execution Vulnerability (08-038)
- MS Windows Help and Support Center Remote Code Execution Vulnerability
- Microsoft Windows TrueType Font Parsing Privilege Elevation Vulnerability