Simon Tatham · Putty · CVE-2017-6542
**Name of the Vulnerable Software and Affected Versions**
PuTTY versions prior to 0.68
**Description**
The issue allows remote attackers to have an unspecified impact via a large length value in an agent protocol message. This is achieved by leveraging the ability to connect to the Unix-domain socket representing the forwarded agent connection, which triggers a buffer overflow.
**Recommendations**
For versions prior to 0.68, update to version 0.68 or later to resolve the issue.