Описание
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
Ссылки
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:van_dyke_technologies:securecrt:4.1.8:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01014
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
EPSS
Процентиль: 77%
0.01014
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other