PT-2004-2751 · Solarwinds · Dameware Mini Remote Control
Ax09001H
·
Published
2004-03-23
·
Updated
2024-01-25
·
CVE-2004-1852
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
DameWare Mini Remote Control versions 3.x through 3.73
DameWare Mini Remote Control versions 4.x through 4.1
Description
The issue allows remote attackers to gain sensitive information because the Blowfish encryption key is transmitted in plaintext.
Recommendations
For DameWare Mini Remote Control versions 3.x through 3.73, update to version 3.74 or later.
For DameWare Mini Remote Control versions 4.x through 4.1, update to version 4.2 or later.
Fix
Cleartext Transmission of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dameware Mini Remote Control