Vulnerability Details : CVE-2004-1851
Dameware Mini Remote Control 4.1.0.0 uses insufficiently random data to create the encryption key, which makes it easier for remote attackers to obtain sensitive information via brute force guessing.
Products affected by CVE-2004-1851
- cpe:2.3:a:dameware_development:mini_remote_control_server:4.1_.0.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-1851
1.25%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2004-1851
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2004-1851
-
http://securitytracker.com/id?1009557
Vendor Advisory
-
http://www.securityfocus.com/bid/9957
Vendor Advisory
-
http://marc.info/?l=bugtraq&m=108016344224973&w=2
'Dameware Passes Weak File Encryption Key in the Clear' - MARC
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/15587
Jump to