Van Dyke SecureCRT Remote Command Execution Vulnerability

A remote command execution vulnerability affects Van Dyke's SecureCRT. This issue is due to a design error that allows a remote attacker to execute arbitrary script on the affected computer with the privileges of the affected application.

An attacker may leverage this issue to execute arbitrary code with the privileges of the user that activated the affected application; this may facilitate privilege escalation or unauthorized access.


 

Privacy Statement
Copyright 2010, SecurityFocus