Simon Tatham: >> Putty >> 0.66 Security Vulnerabilities
Stack-based buffer overflow in the SCP command-line utility in PuTTY before 0.67 and KiTTY 0.66.6.3 and earlier allows remote servers to cause a denial of service (stack memory corruption) or execute arbitrary code via a crafted SCP-SINK file-size response to an SCP download request.
CVSS Score
9.8
EPSS Score
0.347
Published
2016-04-07