VDB
CVE-2016-2563
CVE-2016-2563
REJECTED
Stack-based buffer overflow in the SCP command-line utility in PuTTY before 0.67 and KiTTY 0.66.6.3 and earlier allows remote servers to cause a denial of service (stack memory corruption) or execute arbitrary code via a crafted SCP-SINK file-size response to an SCP download request.
EPSS 26.59% · 96.4th percentile
Risk Scores
EPSS Score
26.59%
96.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | putty | 0, 0.65-2, 0.66-1 |
Exploit Intelligence
- putty pscp client-side post-auth stack buffer overwrite when processing remote file size (hackerone)
- putty pscp client-side post-auth stack buffer overwrite when processing remote file size (hackerone)
- putty pscp client-side post-auth stack buffer overwrite when processing remote file size (hackerone)
- openSUSE-SU-2016:1453 (circl)
- 1035257 (circl)
- GLSA-201606-01 (circl)
- 84296 (circl)
- http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-pscp-sink-sscanf.html (circl)
- https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-2563 (circl)
- 20160309 CVE-2016-2563 - PuTTY/PSCP <=0.66 buffer overflow - vuln-pscp-sink-sscanf (circl)
…and 2 more exploits
Timeline
- CVE Published
- Mar 10, 2016 PoC Published
- Nov 12, 2019 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 18, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 25, 2025 EPSS Score
- Mar 27, 2025 EPSS Score
- Mar 29, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 1, 2025 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-2563 third-party-advisory
- http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-pscp-sink-sscanf.html third-party-advisory
- http://tartarus.org/~simon-git/gitweb/?p=putty.git;a=commitdiff;h=bc6c15ab5f636e05b7e91883f0031a7e06117947 third-party-advisory
- https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-2563 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-2563 third-party-advisory