CVE-2020-12651

SecureCRT before 8.7.2 allows remote attackers to execute arbitrary code via an Integer Overflow and a Buffer Overflow because a banner can trigger a line number to CSI functions that exceeds INT_MAX.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*

History

08 Sep 2021, 17:22

Type Values Removed Values Added
CPE cpe:2.3:o:apple:mac_os:-:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

Information

Published : 2020-05-15 18:15

Updated : 2023-12-10 13:27


NVD link : CVE-2020-12651

Mitre link : CVE-2020-12651

CVE.ORG link : CVE-2020-12651


JSON object : View

Products Affected

apple

  • macos
  • iphone_os

linux

  • linux_kernel

vandyke

  • securecrt

microsoft

  • windows
CWE
CWE-190

Integer Overflow or Wraparound