Simon Tatham Vulnerabilidad

Cronología

Escribe

Connectivity Software	8
Programming Tool Software	2

Producto

Simon Tatham PuTTY	8
Simon Tatham NASM	2

Contramedidas

Official Fix	8
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	2

Explotabilidad

High	0
Functional	0
Proof-of-Concept	2
Unproven	0
Not Defined	8

Vector de acceso

Not Defined	0
Physical	0
Local	4
Adjacent	2
Network	4

Autenticación

Not Defined	0
High	0
Low	0
None	10

La interacción del usuario

Not Defined	0
Required	0
None	10

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	0
≤7	4
≤8	4
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	2
≤7	6
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	2
≤5	0
≤6	0
≤7	4
≤8	4
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	2
<2k	2
<5k	4
<10k	0
<25k	2
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	10
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Products (2): NASM (1), PuTTY (9)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2015-02-27	5.9	5.2	Simon Tatham PuTTY DHE escalada de privilegios	Connectivity Software	Unproven	Unavailable	0.00000	0.00
2013-08-23	4.0	4.0	Simon Tatham PuTTY desbordamiento de búfer	Connectivity Software	Not Defined	Not Defined	0.00042	0.00	CVE-2011-4607
2013-08-06	10.0	9.5	Simon Tatham PuTTY Modular Multiplication modmul desbordamiento de búfer	Connectivity Software	Not Defined	Official Fix	0.01481	0.00	CVE-2013-4206
2013-08-06	6.2	5.9	Simon Tatham PuTTY divulgación de información	Connectivity Software	Not Defined	Official Fix	0.00042	0.00	CVE-2013-4208
2013-08-06	7.3	7.0	Simon Tatham PuTTY DSA Signature desbordamiento de búfer	Connectivity Software	Not Defined	Official Fix	0.00823	0.00	CVE-2013-4207
2013-07-21	8.6	7.7	Simon Tatham PuTTY SSH Handshake Message Length sshdss.c getstring Remote Code Execution	Connectivity Software	Proof-of-Concept	Official Fix	0.02723	0.00	CVE-2013-4852
2005-05-18	6.3	6.3	Simon Tatham NASM desbordamiento de búfer	Programming Tool Software	Not Defined	Official Fix	0.00071	0.00	CVE-2005-1194
2005-02-21	7.3	7.0	Simon Tatham PuTTY sftp.c sftp_pkt_getstring desbordamiento de búfer	Connectivity Software	Not Defined	Official Fix	0.01348	0.00	CVE-2005-0467
2005-02-21	7.3	7.0	Simon Tatham PuTTY sftp.c fxp_readdir_recv desbordamiento de búfer	Connectivity Software	Not Defined	Official Fix	0.01348	0.00	CVE-2005-0467
2004-08-04	7.3	6.6	Simon Tatham PuTTY SSH Connection Attempt desbordamiento de búfer	Connectivity Software	Proof-of-Concept	Official Fix	0.08346	0.00	CVE-2004-1440

◂ AnteriorVisión De ConjuntoPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!