CVE-2006-7162

Name of the Vulnerable Software and Affected Versions PuTTY versions 0.59 and earlier

Description The issue allows local users to gain sensitive information by reading certain files due to weak file permissions. This affects (1) ppk files containing private keys generated by puttygen and (2) session logs created by putty.

Recommendations For PuTTY versions 0.59 and earlier, consider changing the file permissions of ppk files and session logs to restrict access and prevent unauthorized reading of sensitive information. As a temporary workaround, restrict access to the puttygen and putty applications until a fix is applied.