Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2003-0048

PuTTY 0.53b and earlier does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials.

PublishedFeb 19, 2003, 05:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://marc.info/?l=bugtraq&m=104386492422014&w=2
http://www.idefense.com/advisory/01.28.03.txt
http://www.securityfocus.com/bid/6724
http://www.securitytracker.com/id?1006014

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

4.6

Vector String

AV:L/AC:L/Au:N/C:P/I:P/A:P

Base SeverityUnknown

Version

2.0

Attack Vector (AV)