CVE-2019-17067

Опубликовано: 01 окт. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

PuTTY before 0.73 on Windows improperly opens port-forwarding listening sockets, which allows attackers to listen on the same port to steal an incoming connection.

Ссылки

https://lists.tartarus.org/pipermail/putty-announce/2019/000029.html
Mailing List
Third Party Advisory
https://security.netapp.com/advisory/ntap-20191127-0003/
https://lists.tartarus.org/pipermail/putty-announce/2019/000029.html
Mailing List
Third Party Advisory
https://security.netapp.com/advisory/ntap-20191127-0003/

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:putty:putty:*:*:*:*:*:*:*:*

Версия до 0.73 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-770

Связанные уязвимости

CVE-2019-17067

CVSS3: 9.8

ubuntu

больше 6 лет назад

PuTTY before 0.73 on Windows improperly opens port-forwarding listening sockets, which allows attackers to listen on the same port to steal an incoming connection.

CVE-2019-17067

CVSS3: 9.8

debian

больше 6 лет назад

PuTTY before 0.73 on Windows improperly opens port-forwarding listenin ...

GHSA-rfxx-g57q-7c3j

github

больше 3 лет назад

PuTTY before 0.73 on Windows improperly opens port-forwarding listening sockets, which allows attackers to listen on the same port to steal an incoming connection.

EPSS

Процентиль: 62%

0.00433

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-770