CVE-2002-1059

Published Oct 4, 2002

Last updated 8 years ago

CVSS info 7.5

Overview

Description: Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71351D2F-1FE0-4471-A502-10701D7C7380"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "554D08E5-8B1A-4C29-A871-88D22960AB01"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "407045A6-C071-4F35-B6AC-AC56E55BCEAF"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8FCDDA3-09AF-43E8-8528-C7DECA6FBC12"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5887BBF3-1EB2-4948-B9E6-322929F269F2"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA6160E6-742B-459A-9DF6-4B934F893672"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC90C984-D3B5-4710-A393-BB149ADD7A09"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A05EE976-B386-446B-92A5-9E14BC62779D"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2A4AC2D-590F-43E7-8186-874AF9818D2A"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B06270D7-5E5D-4AB5-BC0E-143DB956725D"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "603D2194-99E1-4738-9A66-CE28DB44EB81"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C09AF3F-EC54-42FA-9668-93CE4224CBCC"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9C144FC-D9CE-4817-9276-C1B47957FD06"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B45E68A-E939-4853-B467-9F5474E5DF6F"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B117F4F8-0EED-475F-A588-9D228F67AFD8"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "693E4138-17B5-44F9-AC7A-3DAC791E981E"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:3.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23D87C93-669D-4415-969A-28070A32C7E0"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:4.0_beta_1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0205ED89-3610-4174-9BA2-1E2BF5786844"
          },
          {
            "criteria": "cpe:2.3:a:van_dyke_technologies:securecrt:4.0_beta_2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F72FA96-8356-4C0E-8DAE-F76304C50065"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References