Vulnerabilities
Vulnerable Software
Van Dyke Technologies:  >> Securecrt  Security Vulnerabilities
Buffer overflow in SecureCRT 5.0.4 and earlier and SecureFX 3.0.4 and earlier allows remote attackers to have an unknown impact when a Unicode string is converted to a "narrow" string.
CVSS Score
10.0
EPSS Score
0.031
Published
2006-03-07
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
CVSS Score
7.5
EPSS Score
0.021
Published
2004-12-31
SSH2 clients for VanDyke (1) SecureCRT 4.0.2 and 3.4.7, (2) SecureFX 2.1.2 and 2.0.4, and (3) Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials.
CVSS Score
4.6
EPSS Score
0.005
Published
2003-02-19
Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string.
CVSS Score
7.5
EPSS Score
0.603
Published
2002-10-04
Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password.
CVSS Score
7.5
EPSS Score
0.04
Published
2001-12-30


Contact Us

Shodan ® - All rights reserved