Vulnerability Details CVE-2004-1541
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=110129164332226&w=2
- http://secunia.com/advisories/13275/
- http://www.securityfocus.com/bid/11731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18201
- http://marc.info/?l=bugtraq&m=110129164332226&w=2
- http://secunia.com/advisories/13275/
- http://www.securityfocus.com/bid/11731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18201
Products affected by CVE-2004-1541
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.1
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.2
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.3
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.4
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.5
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.1
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.2
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.3
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.4
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.5
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.6
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.7
-
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.8