VYPR
Unrated severityNVD Advisory· Published Aug 19, 2013· Updated Jun 16, 2026

CVE-2013-4207

CVE-2013-4207

Description

Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service (crash) via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum functionality, a different vulnerability than CVE-2013-4206.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

22
  • Putty/Putty21 versions
    cpe:2.3:a:putty:putty:0.45:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:putty:putty:0.45:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.46:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.47:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.48:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.49:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.50:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.51:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.52:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.53b:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.54:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.55:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.56:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.57:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.58:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.59:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.60:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:0.61:*:*:*:*:*:*:*
    • cpe:2.3:a:putty:putty:2010-06-01:r8967:*:*:development_snapshot:*:*:*
    • cpe:2.3:a:simon_tatham:putty:*:*:*:*:*:*:*:*range: <=0.62
    • cpe:2.3:a:simon_tatham:putty:0.53:*:*:*:*:*:*:*
    • (no CPE)range: <0.63

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.