Van Dyke SecureCRT SecureFX缓冲区溢出漏洞
| CNNVD-ID编号 | CNNVD-200603-103 | CVE编号 | CVE-2006-1038 |
| 发布时间 | 2006-03-07 | 更新时间 | 2006-03-08 |
| 漏洞类型 | 缓冲区溢出 | 漏洞来源 | Van Dyke Technologies |
| 危险等级 | 超危 | 威胁类型 | 远程 |
| 厂商 | van_dyke_technologies | ||
漏洞介绍
在SecureCRT 5.0.4及其早期版本以及SecureFX 3.0.4及其早期版本中存在缓冲区溢出漏洞,当一条Unicode字符串被转换成\"窄\"字符串时,远程攻击者可以施加不明影响。
漏洞补丁
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
Van Dyke Technologies SecureFX 2.0.4
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureFX 2.0.5
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureFX 2.1.1
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureFX 2.1.2
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureFX 2.1.3
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureCRT 2.4
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.0
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureFX 3.0.4
Van Dyke Technologies SecureFX 3.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureFX
Van Dyke Technologies SecureCRT 3.1
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.1.1
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.1.2
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.2
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.2.1
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.2.2
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.3
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.3.1
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.3.2
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.3.3
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.3.4
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.1
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.2
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.3
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.4
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.5
Van Dyke Technologies SecureCRT 5.0.5
https://secure.vandyke.com/cgi-bin/download_form.cgi?PRODUCT=SecureCRT
Van Dyke Technologies SecureCRT 3.4.6
Van Dyke Technologies SecureCRT 5.0.5
https://secure.
参考网址
来源: VUPEN
名称: ADV-2006-0806
链接:http://www.frsirt.com/english/advisories/2006/0806
来源: SECUNIA
名称: 19040
链接:http://secunia.com/advisories/19040
来源: www.vandyke.com
链接:http://www.vandyke.com/products/securecrt/history.txt
来源: XF
名称: securecrt-securefx-string-bo(25092)
链接:http://xforce.iss.net/xforce/xfdb/25092
来源: www.vandyke.com
链接:http://www.vandyke.com/products/securefx/history.txt
受影响实体
Van_dyke_technologies Securefx:3.0.2 Van_dyke_technologies Securecrt:5.0.2 Van_dyke_technologies Securecrt:5.0 Van_dyke_technologies Securecrt:5.0.1 Van_dyke_technologies Securefx:3.0_beta_2信息来源
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200603-103
评论