Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Securecrt | Van_dyke_technologies | 2.4 (including) | 2.4 (including) |
| Securecrt | Van_dyke_technologies | 3.0 (including) | 3.0 (including) |
| Securecrt | Van_dyke_technologies | 3.1 (including) | 3.1 (including) |
| Securecrt | Van_dyke_technologies | 3.1.1 (including) | 3.1.1 (including) |
| Securecrt | Van_dyke_technologies | 3.1.2 (including) | 3.1.2 (including) |
| Securecrt | Van_dyke_technologies | 3.2 (including) | 3.2 (including) |
| Securecrt | Van_dyke_technologies | 3.2.1 (including) | 3.2.1 (including) |
| Securecrt | Van_dyke_technologies | 3.3 (including) | 3.3 (including) |
| Securecrt | Van_dyke_technologies | 3.3.1 (including) | 3.3.1 (including) |
| Securecrt | Van_dyke_technologies | 3.3.2 (including) | 3.3.2 (including) |
| Securecrt | Van_dyke_technologies | 3.3.3 (including) | 3.3.3 (including) |
| Securecrt | Van_dyke_technologies | 3.4 (including) | 3.4 (including) |
| Securecrt | Van_dyke_technologies | 3.4.1 (including) | 3.4.1 (including) |
| Securecrt | Van_dyke_technologies | 3.4.2 (including) | 3.4.2 (including) |
| Securecrt | Van_dyke_technologies | 3.4.3 (including) | 3.4.3 (including) |
| Securecrt | Van_dyke_technologies | 3.4.4 (including) | 3.4.4 (including) |
| Securecrt | Van_dyke_technologies | 3.4.5 (including) | 3.4.5 (including) |
| Securecrt | Van_dyke_technologies | 4.0_beta_1 (including) | 4.0_beta_1 (including) |
| Securecrt | Van_dyke_technologies | 4.0_beta_2 (including) | 4.0_beta_2 (including) |