SecureCRT SSH-1 Protocol Multiple Field Remote Overflow
Local Access Required,
Remote / Network Access
Loss of Integrity,
Loss of Availability
SecureCRT SSH-1 Protocol is prone to an overflow condition. The program fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted input, a local attacker can potentially cause remote execution or crash.
Upgrade to version 3.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.