PuTTY Private Key 'putty/sshdss.c' Multiple Information Disclosure Vulnerabilities

Bugtraq ID: 61644
Class: Design Error
CVE: CVE-2013-4208
Remote: Yes
Local: Yes
Published: Aug 06 2013 12:00AM
Updated: Apr 13 2015 09:55PM
Credit: Vendor reported these issue. The RSA part of this vulnerability was spotted by Coverity Scan.
Vulnerable: TortoiseGit TortoiseGit 1.8.4.0
Simon Tatham PuTTY 0.58
Simon Tatham PuTTY 0.57
Simon Tatham PuTTY 0.56
Simon Tatham PuTTY 0.55
Simon Tatham PuTTY 0.54
Simon Tatham PuTTY 0.53 b
Simon Tatham PuTTY 0.53
Simon Tatham PuTTY 0.52
Simon Tatham PuTTY 0.62
Simon Tatham PuTTY 0.61
Simon Tatham PuTTY 0.60
Simon Tatham PuTTY 0.59
Simon Tatham PSFTP 0
Simon Tatham PSCP 0
Simon Tatham Plink 0
S.u.S.E. openSUSE 12.3
S.u.S.E. openSUSE 12.2
Gentoo Linux
FileZilla FileZilla 3.7.2
FileZilla FileZilla 3.0.10 -rc2
FileZilla FileZilla 3.0.10 -rc1
FileZilla FileZilla 3.0.10
FileZilla FileZilla 3.0.9
FileZilla FileZilla 3.0 -beta5
FileZilla FileZilla 3.0 -beta4
FileZilla FileZilla 3.0 -beta3
FileZilla FileZilla 3.0 -beta2
FileZilla FileZilla 3.0 -beta1
FileZilla FileZilla 2.2.32
FileZilla FileZilla 2.2.31
FileZilla FileZilla 2.2.30
FileZilla FileZilla 2.2.29
FileZilla FileZilla 2.2.28
FileZilla FileZilla 2.2.27
FileZilla FileZilla 2.2.26
FileZilla FileZilla 2.2.25
FileZilla FileZilla 2.2.24
FileZilla FileZilla 2.2.23
FileZilla FileZilla 2.2.22
FileZilla FileZilla 2.2.15
FileZilla FileZilla 0.9.22
FileZilla FileZilla 0.9.21
FileZilla FileZilla 0.9.20
FileZilla FileZilla 3.7.1.1
FileZilla FileZilla 2.2.30a
FileZilla FileZilla 2.2.26a
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: TortoiseGit TortoiseGit 1.8.5.0
Simon Tatham PuTTY 0.63
FileZilla FileZilla 3.7.3


 

Privacy Statement
Copyright 2010, SecurityFocus