CVE-2013-4206

Name of the Vulnerable Software and Affected Versions PuTTY versions prior to 0.63

Description A heap-based buffer underflow issue exists in the modmul function in sshbn.c, which can be triggered by remote SSH servers sending a crafted DSA signature. This can cause a denial of service (crash) and potentially lead to memory corruption or code execution due to improper handling of certain bit-shifting operations during modular multiplication.

Recommendations For versions prior to 0.63, update to version 0.63 or later to resolve the issue.