{"id":18483,"date":"2024-11-12T14:28:11","date_gmt":"2024-11-12T19:28:11","guid":{"rendered":"https:\/\/carleton.ca\/scs\/?p=18483"},"modified":"2026-06-02T14:59:34","modified_gmt":"2026-06-02T18:59:34","slug":"putty-ssh-client-found-vulnerable-to-key-recovery-attack","status":"publish","type":"post","link":"https:\/\/carleton.ca\/scs\/2024\/putty-ssh-client-found-vulnerable-to-key-recovery-attack\/","title":{"rendered":"PuTTY SSH Client Found Vulnerable to Key Recovery Attack"},"content":{"rendered":"\n<section class=\"w-screen px-6 cu-section cu-section--white ml-offset-center md:px-8 lg:px-14\">\n    <div class=\"space-y-6 cu-max-w-child-5xl  md:space-y-10 cu-prose-first-last\">\n\n            <div class=\"cu-textmedia flex flex-col lg:flex-row mx-auto gap-6 md:gap-10 my-6 md:my-12 first:mt-0 max-w-5xl\">\n        <div class=\"justify-start cu-textmedia-content cu-prose-first-last\" style=\"flex: 0 0 100%;\">\n            <header class=\"font-light prose-xl cu-pageheader md:prose-2xl cu-component-updated cu-prose-first-last\">\n                                    <h1 class=\"cu-prose-first-last font-semibold !mt-2 mb-4 md:mb-6 relative after:absolute after:h-px after:bottom-0 after:bg-cu-red after:left-px text-3xl md:text-4xl lg:text-5xl lg:leading-[3.5rem] pb-5 after:w-10 text-cu-black-700 not-prose\">\n                        PuTTY SSH Client Found Vulnerable to Key Recovery Attack\n                    <\/h1>\n                \n                                \n                            <\/header>\n\n                    <\/div>\n\n            <\/div>\n\n    <\/div>\n<\/section>\n\n<p>In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user&#8217;s NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is able to read messages signed by PuTTY or Pageant.<\/p>\n\n\n\n<p>Besides impacting PuTTY, it also affects other products that incorporate a vulnerable version:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>FileZilla (3.24.1 &#8211; 3.66.5)<\/li>\n\n\n\n<li>WinSCP (5.9.5 &#8211; 6.3.2)<\/li>\n\n\n\n<li>TortoiseGit (2.4.0.2 &#8211; 2.15.0)<\/li>\n\n\n\n<li>TortoiseSVN (1.10.0 &#8211; 1.14.6)<\/li>\n<\/ul>\n\n\n\n<p>The fix is to:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>upgrade the software to the latest version<\/li>\n\n\n\n<li>delete your current private key.<\/li>\n<\/ol>\n\n\n\n<p>References:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-31497\">https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-31497<\/a><\/li>\n<\/ul>\n\n\n\n<p>&nbsp;<\/p>\n\n\n\n<p>&nbsp;<\/p>\n\n\n\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user&#8217;s NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is able to read messages signed by PuTTY or Pageant. Besides impacting PuTTY, it also [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":"","_links_to":"","_links_to_target":""},"categories":[99],"tags":[],"class_list":["post-18483","post","type-post","status-publish","format-standard","hentry","category-ssh"],"acf":{"cu_post_thumbnail":""},"_links":{"self":[{"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/posts\/18483","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/comments?post=18483"}],"version-history":[{"count":2,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/posts\/18483\/revisions"}],"predecessor-version":[{"id":18485,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/posts\/18483\/revisions\/18485"}],"wp:attachment":[{"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/media?parent=18483"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/categories?post=18483"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/carleton.ca\/scs\/wp-json\/wp\/v2\/tags?post=18483"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}