Vulnerability Details CVE-2004-1852
DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, which allows remote attackers to gain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=108016344224973&w=2
- http://secunia.com/advisories/11205
- http://securitytracker.com/id?1009557
- http://www.dameware.com/support/security/bulletin.asp?ID=SB3
- http://www.osvdb.org/4547
- http://www.securityfocus.com/bid/9959
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15586
- http://marc.info/?l=bugtraq&m=108016344224973&w=2
- http://secunia.com/advisories/11205
- http://securitytracker.com/id?1009557
- http://www.dameware.com/support/security/bulletin.asp?ID=SB3
- http://www.osvdb.org/4547
- http://www.securityfocus.com/bid/9959
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15586
Products affected by CVE-2004-1852
-
cpe:2.3:a:solarwinds:dameware_mini_remote_control:*