Bitvise Winsshd 848 Exploit ((better))

In version 8.48, a specific bug was identified where file transfer subsystems would abruptly abort rather than reporting an error if an SCP upload failed to write data or set file times. This could be used for minor Denial of Service (DoS) against specific file transfer sessions. Installation Path Hijack Risk:

: It can be used to sabotage SSH extension negotiations, such as removing the EXT_INFO message. This leads to the use of weaker authentication methods or the bypassing of certain security defenses like keystroke timing protections. bitvise winsshd 848 exploit

: Fixed an issue where the file transfer subsystem would abruptly abort during SCP uploads if a file write or timestamp update failed. In version 8