CVE-2013-4208 in PuTTYinformation

Résumé (Anglaise)

The rsa_verify function in PuTTY before 0.63 (1) does not clear sensitive process memory after use and (2) does not free certain structures containing sensitive process memory, which might allow local users to discover private RSA and DSA keys.

Once again VulDB remains the best source for vulnerability data.

Réserver

12/06/2013

Divulgation

19/08/2013

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
9902Simon Tatham PuTTY divulgation d'information200Non définiCorrectif officielCVE-2013-4208

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!