Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mini_remote_control_server | Dameware_development | 4.1_.0.0 (including) | 4.1_.0.0 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=108016344224973\u0026w=2
- http://secunia.com/advisories/11205
- http://securitytracker.com/id?1009557
- http://www.osvdb.org/4547
- http://www.securityfocus.com/bid/9957
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15587
- http://marc.info/?l=bugtraq\u0026m=108016344224973\u0026w=2
- http://secunia.com/advisories/11205
- http://securitytracker.com/id?1009557
- http://www.osvdb.org/4547
- http://www.securityfocus.com/bid/9957
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15587