CVE-2001-1466

Name of the Vulnerable Software and Affected Versions VanDyke SecureCRT versions prior to 3.4.2

Description The issue allows remote attackers to execute arbitrary code via a long username or password when using the SSH-1 protocol.

Recommendations For versions prior to 3.4.2, update to version 3.4.2 or later to resolve the issue. As a temporary workaround, consider restricting the use of the SSH-1 protocol until a patch is applied. Avoid using long username or password values in the affected protocol to minimize the risk of exploitation.