Van Dyke Technologies » Securefx : Security Vulnerabilities, CVEs,
Buffer overflow in SecureCRT 5.0.4 and earlier and SecureFX 3.0.4 and earlier allows remote attackers to have an unknown impact when a Unicode string is converted to a "narrow" string.
Max CVSS
10.0
EPSS Score
1.90%
Published
2006-03-07
Updated
2017-07-20
SSH2 clients for VanDyke (1) SecureCRT 4.0.2 and 3.4.7, (2) SecureFX 2.1.2 and 2.0.4, and (3) Entunnel 1.0.2 and earlier, do not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials.
Max CVSS
4.6
EPSS Score
0.06%
Published
2003-02-19
Updated
2016-10-18
2 vulnerabilities found