Lucene search

[email protected]CVE-2002-1059

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-1059

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

cve-2002-1059

buffer overflow

van dyke securecrt

ssh client

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.107 Low

EPSS

Percentile

95.1%

JSON

Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string.

Affected configurations

NVD

Node

van_dyke_technologiessecurecrtMatch2.4

van_dyke_technologiessecurecrtMatch3.0

van_dyke_technologiessecurecrtMatch3.1

van_dyke_technologiessecurecrtMatch3.1.1

van_dyke_technologiessecurecrtMatch3.1.2

van_dyke_technologiessecurecrtMatch3.2

van_dyke_technologiessecurecrtMatch3.2.1

van_dyke_technologiessecurecrtMatch3.3

van_dyke_technologiessecurecrtMatch3.3.1

van_dyke_technologiessecurecrtMatch3.3.2

van_dyke_technologiessecurecrtMatch3.3.3

van_dyke_technologiessecurecrtMatch3.4

van_dyke_technologiessecurecrtMatch3.4.1

van_dyke_technologiessecurecrtMatch3.4.2

van_dyke_technologiessecurecrtMatch3.4.3

van_dyke_technologiessecurecrtMatch3.4.4

van_dyke_technologiessecurecrtMatch3.4.5

van_dyke_technologiessecurecrtMatch4.0_beta_1

van_dyke_technologiessecurecrtMatch4.0_beta_2

CPENameOperatorVersion
van_dyke_technologies:securecrtvan dyke technologies securecrteq2.4
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.0
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.1
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.1.1
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.1.2
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.2
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.2.1
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.3
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.3.1
van_dyke_technologies:securecrtvan dyke technologies securecrteq3.3.2

CPE	Name	Operator	Version
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	2.4
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.0
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.1
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.1.1
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.1.2
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.2
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.2.1
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.3
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.3.1
van_dyke_technologies:securecrt	van dyke technologies securecrt	eq	3.3.2

Rows per page:

1-10 of 191

References

marc.info/?l=bugtraq&m=102744150718462&w=2

marc.info/?l=bugtraq&m=102746007908689&w=2

www.iss.net/security_center/static/9650.php

www.osvdb.org/4991

www.securityfocus.com/bid/5287

www.vandyke.com/products/securecrt/security07-25-02.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.107 Low

EPSS

Percentile

95.1%

JSON

Related for CVE-2002-1059

openvas2 nvd1 packetstorm1 nessus1 cvelist1