Bitvise SSH Server (formerly WinSSHD) version 8.48 is not known to have a unique, critical "headline" exploit
privileges, this allows a limited user to achieve full administrative access to the machine. Race Condition (Service Crash) bitvise winsshd 8.48 exploit
The exploit, which John dubbed "BV-Exploit-8.48," was a Python script that sent a specially crafted authentication request to the vulnerable WinSSHD server. The request would bypass authentication, allowing the attacker to gain shell access to the system. Bitvise SSH Server (formerly WinSSHD) version 8