[Babase] Flaw in Putty SSH implimentation

Karl O. Pinc babase@www.eco.princeton.edu
Fri, 29 Oct 2004 20:48:28 -0500


Hi Ya'll,

If you're running Putty for ssh on MS Windows it's time to upgrade.

http://www.net-security.org/vuln.php?id=3796

You have to connect to a malicious server to be vulnerable but
there's no point in waiting until you're fooled.

Putty home page:
http://www.chiark.greenend.org.uk/~sgtatham/putty/

Regards,

Karl <kop@meme.com>
Free Software:  "You don't pay back, you pay forward."
                  -- Robert A. Heinlein