Summary
The remote host is using a vulnerable version of SecureCRT, a SSH/Telnet client built for Microsoft Windows operation systems.
It has been reported that SecureCRT contain a remote buffer overflow allowing an SSH server to execute arbitrary command via a specially long SSH1 protocol version string.
Solution
Upgrade to SecureCRT 3.2.2, 3.3.4, 3.4.6, 4.1 or newer
Severity
Classification
-
CVE CVE-2002-1059 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft Windows Indeo Codec Multiple Vulnerabilities
- Microsoft PowerPoint 2007 OfficeArt Atom Remote Code Execution Vulnerability
- Microsoft Windows Progman Group Converter Insecure Library Loading Vulnerability
- Microsoft WMI Administrative Tools ActiveX Control Remote Code Execution Vulnerabilities
- Microsoft Windows Fax Cover Page Editor BOF Vulnerabilities