162 matches found
Arbitrary Code Execution Vulnerability in VanDyke SecureCRT 3.4 & 4.0 beta
SecureCRT http://www.vandyke.com/products/securecrt/ seems to have a bug in a seemlingly trivial portion of its SSH connection code. When an SSH Client connects to a server, the server sends a version string containing minor and major numbers for the protocol, as well as a server-specific...
SSH - User Code Execution (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'SSH User Code Execution', 'Description' = %q This module connects to the target system and executes the...