Buffer Overflow in PuTTY Affects Remote Agent Connections
CVE-2017-6542

9.8CRITICAL

Key Information:

Vendor: Putty
Status: Putty
Vendor: CVE Published:; 27 March 2017

What is CVE-2017-6542?

The ssh_agent_channel_data function in PuTTY prior to version 0.68 is susceptible to a buffer overflow triggered by a malicious agent protocol message. This vulnerability allows attackers to manipulate the length value in such messages when connecting to the Unix-domain socket for forwarded agent connections. Exploitation of this flaw could lead to unspecified impacts, enabling potential unauthorized actions from remote locations.

References

http://www.securityfocus.com/bid/97156

vdb-entryx_refsource_BID

https://www.exploit-db.com/exploits/42137/

exploitx_refsource_EXPLOIT-DB

https://security.gentoo.org/glsa/201703-03

vendor-advisoryx_refsource_GENTOO

EPSS Score

25% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 27, 2017
Vulnerability Reserved
Mar 8, 2017

Putty

What is CVE-2017-6542?

References

EPSS Score

CVSS V3.1

Timeline