GateOne allows remote malicious users to execute arbitrary commands via shell metacharacters in the port field when attempting an SSH connection.
liftoffsoftware gateone -