Home > Vulnerability Database > CVE-2006-7162

Mend.io Vulnerability Database

CVE-2006-7162

Date: October 3, 2022

PuTTY 0.59 and earlier uses weak file permissions for (1) ppk files containing private keys generated by puttygen and (2) session logs created by putty, which allows local users to gain sensitive information by reading these files.

Severity Score

2.9

Related Resources (5)

Url: http://secunia.com/advisories/24381

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-7162

Url: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=400804

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-7162

Url: https://www.mend.io/vulnerability-database/CVE-2006-7162

Severity Score

2.9

CVSS v3.1

Base Score:	2.9
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	1.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2006-7162

Date: October 3, 2022

Severity Score

Related Resources (5)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?