CyberSec.Space Logo
Back to CVE Browser

CVE-2006-1038

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1240%
EPSS Percentile21.37th
PublishedMar 7, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in SecureCRT 5.0.4 and earlier and SecureFX 3.0.4 and earlier allows remote attackers to have an unknown impact when a Unicode string is converted to a "narrow" string.

Affected Platforms (CPE)

πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0.1
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0.2
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0.3
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0.4
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_1
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_2
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_3
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_4
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_5
πŸ“¦
Van Dyke Technologies

Securecrt

= 5.0_beta_6
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0.1
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0.2
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0.3
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0.4
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_1
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_2
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_3
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_4
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_5
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_6
πŸ“¦
Van Dyke Technologies

Securefx

= 3.0_beta_7

References & Advisories

πŸ”— http://secunia.com/advisories/19040
πŸ”— http://www.securityfocus.com/bid/16935
πŸ”— http://www.vandyke.com/products/securecrt/history.txt
πŸ”— http://www.vandyke.com/products/securefx/history.txt
πŸ”— http://www.vupen.com/english/advisories/2006/0806
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/25092
πŸ”— http://secunia.com/advisories/19040
πŸ”— http://www.securityfocus.com/bid/16935

Related Vulnerabilities

CVE-2020-126519.8

SecureCRT before 8.7.2 allows remote attackers to execute arbitrary code via an Integer Overflow and a Buffer Overflow because a b...

CVE-2001-14667.5

Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary cod...

CVE-2002-10597.5

Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrar...

CVE-2004-15417.5

SecureCRT 4.0, 4.1, and possibly other versions, allows remote attackers to execute arbitrary commands via a telnet:// URL that us...