Vulnerability Details CVE-2001-1466
Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.048
EPSS Ranking 89.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vuln-dev/2001-q4/0967.html
- http://www.kb.cert.org/vuls/id/216227
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10111
- http://archives.neohapsis.com/archives/vuln-dev/2001-q4/0967.html
- http://www.kb.cert.org/vuls/id/216227
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10111
Products affected by CVE-2001-1466
-
cpe:2.3:a:van_dyke_technologies:securecrt:*