Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Van Dyke SecureCRT < 4.1.9 Telnet URI Remote Command Execution

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is using a vulnerable version of SecureCRT, a SSH/Telnet client built for Microsoft Windows operating systems. It has been reported that SecureCRT does not safely check the protocol handler. As a result, an attacker may be able to exploit it by setting up a malicious SMB share.

Solution

Upgrade to SecureCRT 4.1.9 or higher.