Vulnerability Description
Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dameware Development | Mini Remote Control Server | 4.1_.0.0 |
References
- http://marc.info/?l=bugtraq&m=108016344224973&w=2
- http://secunia.com/advisories/11205PatchVendor Advisory
- http://securitytracker.com/id?1009557Vendor Advisory
- http://www.osvdb.org/4547Vendor Advisory
- http://www.securityfocus.com/bid/9957Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15587
- http://marc.info/?l=bugtraq&m=108016344224973&w=2
- http://secunia.com/advisories/11205PatchVendor Advisory
- http://securitytracker.com/id?1009557Vendor Advisory
- http://www.osvdb.org/4547Vendor Advisory
- http://www.securityfocus.com/bid/9957Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15587
FAQ
What is CVE-2004-1851?
CVE-2004-1851 is a vulnerability with a CVSS score of 7.5 (HIGH). Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.
How severe is CVE-2004-1851?
CVE-2004-1851 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1851?
Check the references section above for vendor advisories and patch information. Affected products include: Dameware Development Mini Remote Control Server.