Blowfish Encryption Key Exposure in DameWare Mini Remote Control by DameWare
CVE-2004-1852

Currently unrated

Key Information:

Vendor

Solarwinds

Vendor
CVE Published:
23 March 2004

What is CVE-2004-1852?

The DameWare Mini Remote Control application in versions 3.x prior to 3.74 and 4.x prior to 4.2 transmits the Blowfish encryption key in plaintext. This flaw allows remote attackers to intercept sensitive information, thereby increasing the risk of unauthorized access and exploitation of the remote control functionality. Users are advised to upgrade to the latest versions to mitigate this vulnerability, ensuring encryption keys are properly secured.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.