Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-5309

Опубликовано: 07 дек. 2015
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters) escape sequence with a large parameter value, which triggers a buffer underflow.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:simon_tatham:putty:*:*:*:*:*:*:*:*
Версия до 0.65 (включая)

EPSS

Процентиль: 82%
0.01736
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-189

Связанные уязвимости

ubuntu логотип

CVE-2015-5309

ubuntu
около 10 лет назад

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters) escape sequence with a large parameter value, which triggers a buffer underflow.

debian логотип

CVE-2015-5309

debian
около 10 лет назад

Integer overflow in the terminal emulator in PuTTY before 0.66 allows ...

suse-cvrf логотип

openSUSE-SU-2015:2023-1

suse-cvrf
около 10 лет назад

Security update for putty

github логотип

GHSA-xf6h-8pvx-cg8q

github
больше 3 лет назад

Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters) escape sequence with a large parameter value, which triggers a buffer underflow.

EPSS

Процентиль: 82%
0.01736
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-189