CVE-2013-4207
EPSS 0.58%Published: 8/19/2013Modified: 4/28/2026
Description
Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service (crash) via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum functionality, a different vulnerability than CVE-2013-4206.
Affected packages (2)
- Debian/filezillafrom 0, < 3.7.3-1
- Debian/puttyfrom 0, < 0.63-1