A search for "putty" on the forum found 2 hits which leads us to believe that CoreFTP includes the opensource putty source code for ssh/sftp functionality. (WinSCP, Dreamweaver and others also bring along their own putty software). Recently a "serious security hole" (see below) was found in putty, and if CoreFTP uses putty, I'd like to know which version of CoreFTP uses which version of putty, or at least what version of CoreFTP started using the fixed putty 0.55 or better.
The new version Version 1.3b (build 1387) of CoreFTP, updated September 22nd, 2004 makes no mention of an updated putty in the release notes.
About security hole from PUTTY home page... http://www.chiark.greenend.org.uk/~sgtatham/putty/
"Fixes a serious security hole which may allow a server to execute code of its choice on a PuTTY client connecting to it. In SSH2, the attack can be performed before host key verification, meaning that even if you trust the server you think you are connecting to, a different machine could be impersonating it and could launch the attack before you could tell the difference."