The host is installed with Putty before 0.73 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle port-forwarding listening sockets. Successful exploitation could allows attackers to listen on the same port to steal an incoming connection.