PuTTY Puttygen Insecure Private Key File Permissions Vulnerability

PuTTY Puttygen Insecure Private Key File Permissions Vulnerability

PuTTY is prone to an insecure-file-permissions vulnerability because of a design flaw in the affected application.

An attacker could exploit this issue to access SSH private key files.

Version 0.58-5 on Debian Linux is affected.

NOTE: Although this vulnerability is reported to affect Debian systems at this stage, other Linux distributions may also be affected.