|CVSS SCORE||7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)|
The specific flaw manifests while parsing the response to a PWD command. The client copies part of the response to a fixed-length stack buffer. By supplying a sufficiently large response, an attacker can exploit this condition to achieve code execution under the context of the user.
Attachmate has issued an update to correct this vulnerability. More details can be found at: