Arbitrary Command Execution via Telnet URL in SecureCRT

Arbitrary Command Execution via Telnet URL in SecureCRT

CVE-2004-1541 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that uses the /F option to specify a configuration file on a samba share.

Learn more about our Web Application Penetration Testing UK.