MidnightBSD

Advisories for dameware_development

CVE-2003-1030 HIGH

Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dameware_development mini_remote_control_server 3.71_.0.0
dameware_development mini_remote_control_server 3.72_.0.0
dameware_development mini_remote_control_server 3.70_.0.0
CVE-2004-1851 HIGH

Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dameware_development mini_remote_control_server 4.1_.0.0
CVE-2005-1088 HIGH

Unknown vulnerability in DameWare NT Utilities 4.8 and earlier, and Mini Remote Control 4.8 and earlier, allows local users to gain additional rights.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dameware_development nt_utilities 3.74.0.0
dameware_development mini_remote_control 3.74
dameware_development nt_utilities 3.60.0.0
dameware_development nt_utilities 3.43.0.0
dameware_development nt_utilities 3.63.0.0
dameware_development nt_utilities 4.4
dameware_development mini_remote_control 4.7
dameware_development mini_remote_control 4.0
dameware_development nt_utilities 3.64.0.0
dameware_development nt_utilities 3.49
dameware_development nt_utilities 3.66.0.0
dameware_development nt_utilities 4.5
dameware_development nt_utilities 3.73.0.0
dameware_development nt_utilities 3.51
dameware_development nt_utilities 3.0.0.0
dameware_development nt_utilities 4.0
dameware_development nt_utilities 4.6
dameware_development nt_utilities 3.2.0.0
dameware_development mini_remote_control 4.1
dameware_development nt_utilities 3.69
dameware_development nt_utilities 4.7
dameware_development nt_utilities 3.44.0.0
dameware_development mini_remote_control 4.8
dameware_development mini_remote_control 4.5
dameware_development nt_utilities 3.62.0.0
dameware_development nt_utilities 4.3
dameware_development nt_utilities 3.46.0.0
dameware_development nt_utilities 4.1
dameware_development mini_remote_control 4.6
dameware_development nt_utilities 4.2
dameware_development nt_utilities 3.45.0.0
dameware_development nt_utilities 4.8
dameware_development mini_remote_control 4.3
dameware_development nt_utilities 3.41.0.0
dameware_development nt_utilities 3.21.0.0
dameware_development nt_utilities 3.68.0.0
dameware_development mini_remote_control 3.72
dameware_development nt_utilities 3.50
dameware_development nt_utilities 3.71.0.0
dameware_development nt_utilities 3.61.0.0
dameware_development nt_utilities 3.1.0.0
dameware_development nt_utilities 3.70
dameware_development nt_utilities 3.48.0.0
dameware_development nt_utilities 3.42.0.0
dameware_development mini_remote_control 3.71
dameware_development mini_remote_control 3.73
dameware_development mini_remote_control 4.2
dameware_development nt_utilities 3.65.0.0
dameware_development mini_remote_control 3.70
dameware_development nt_utilities 3.72.0.0
dameware_development nt_utilities 3.67
dameware_development mini_remote_control 4.4
CVE-2005-1166 LOW

The DNTUS26 process in Dameware NT Utilities and the DWRCS process in MiniRemote Control 4.9 and earlier stores the username and password in cleartext in memory, which could allow attackers to obtain sensitive information.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dameware_development dameware_nt_utilities *
dameware_development miniremote_control *
CVE-2005-2842 HIGH

Buffer overflow in dwrcs.exe in DameWare Mini Remote Control before 4.9.0 allows remote attackers to execute arbitrary code via the username.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dameware_development mini_remote_control_server 4.0
dameware_development mini_remote_control_server 4.2.0.0
dameware_development mini_remote_control_server 4.8
dameware_development mini_remote_control_server 4.1.0.0