DEBIAN-CVE-2005-0467
- Source
- https://security-tracker.debian.org/tracker/CVE-2005-0467
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2005-0467.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2005-0467
- Upstream
- Published
- 2005-02-21T05:00:00Z
- Modified
- 2025-11-19T02:01:14.739709Z
- Summary
- [none]
- Details
-
Multiple integer overflows in the (1) sftppktgetstring and (2) fxpreaddirrecv functions in the PSFTP and PSCP clients for PuTTY 0.56, and possibly earlier versions, allow remote malicious web sites to execute arbitrary code via SFTP responses that corrupt the heap after insufficient memory has been allocated.
- References
Affected packages
Debian:11 / putty
Package
- Name
- putty
- Purl
- pkg:deb/debian/putty?arch=source
Debian:12 / putty
Package
- Name
- putty
- Purl
- pkg:deb/debian/putty?arch=source
Debian:13 / putty
Package
- Name
- putty
- Purl
- pkg:deb/debian/putty?arch=source
Debian:14 / putty
Package
- Name
- putty
- Purl
- pkg:deb/debian/putty?arch=source