Bitvise Winsshd 8.48 Exploit [verified]

If an active attacker sits in a Man-in-the-Middle (MitM) position, they can stealthily remove extension negotiation messages. This degrades the connection security by disabling features like keystroke timing defenses. Bitvise did not implement the mandatory "strict key exchange" mitigation until version 9.32. 3. Exploitation of Windows Directory Permissions

Here's a high-level overview of the exploit: bitvise winsshd 8.48 exploit