Vulnerabilities > CVE-2004-1851 - Weak Random Key Generation vulnerability in Dameware Development Mini Remote Control Server 4.1.0.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

dameware-development

NVD

Published: 2004-03-24

Updated: 2017-07-11

Summary

Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.

Vulnerable Configurations

Part	Description	Count
Application	Dameware_Development Dameware Development Mini Remote Control Server 4.1_.0.0	1

References

http://marc.info/?l=bugtraq&m=108016344224973&w=2
http://secunia.com/advisories/11205
http://securitytracker.com/id?1009557
http://www.osvdb.org/4547
http://www.securityfocus.com/bid/9957
https://exchange.xforce.ibmcloud.com/vulnerabilities/15587