Nessus Plugin #14263

Plugin Index

Note: This file has been created from a downloaded version of the Nessus Plugins from http://www.nessus.org/. Therefore, the information here can be outdated.

PuTTY SSH2 authentication password persistence weakness

Family:
Windows
Category:
infos
Copyright:
This script is Copyright (C) 2004 David Maciejak
Summary:
Determine PuTTY version
Version:
$Revision: 1.3 $
Cve_id:
CAN-2003-0048
Bugtraq_id:
6724
Xrefs:
OSVDB:7687
Description:

PuTTY is a free SSH client.

It has been reported that this version does not safely handle password information.
As a result, a local user may be able to recover authentication passwords.

Solution : Upgrade to the newest version of PuTTY

Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.