This Metasploit module exploits a buffer overflow in SecureCRT <= 4.0 Beta 2. By sending a vulnerable client an overly long SSH1 protocol identifier string, it is possible to execute arbitrary code. This Metasploit module has only been tested on SecureCRT 3.4.4.
6bc41f94351563a1a4506ce0a9e0a6cd4aa4ec1e9d1eb5a13735f3c53bcbc91d