CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
96.5%
SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.
Vendor | Product | Version | CPE |
---|---|---|---|
van_dyke_technologies | securecrt | 4.0.1 | cpe:2.3:a:van_dyke_technologies:securecrt:4.0.1:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.0.2 | cpe:2.3:a:van_dyke_technologies:securecrt:4.0.2:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.0.3 | cpe:2.3:a:van_dyke_technologies:securecrt:4.0.3:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.0.4 | cpe:2.3:a:van_dyke_technologies:securecrt:4.0.4:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.0.5 | cpe:2.3:a:van_dyke_technologies:securecrt:4.0.5:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.1 | cpe:2.3:a:van_dyke_technologies:securecrt:4.1:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.1.1 | cpe:2.3:a:van_dyke_technologies:securecrt:4.1.1:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.1.2 | cpe:2.3:a:van_dyke_technologies:securecrt:4.1.2:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.1.3 | cpe:2.3:a:van_dyke_technologies:securecrt:4.1.3:*:*:*:*:*:*:* |
van_dyke_technologies | securecrt | 4.1.4 | cpe:2.3:a:van_dyke_technologies:securecrt:4.1.4:*:*:*:*:*:*:* |