CVE-2002-1059 Information

Description

Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6 and 4.x before 4.0 beta 3 allows an SSH server to execute arbitrary code via a long SSH1 protocol version string.

Reference

http://marc.info/?l=bugtraq&m=102744150718462&w=2 http://marc.info/?l=bugtraq&m=102746007908689&w=2 http://www.iss.net/security_center/static/9650.php http://www.osvdb.org/4991 http://www.securityfocus.com/bid/5287 http://www.vandyke.com/products/securecrt/security07-25-02.html