|
|
Info |
Last Modified |
| 8 months ago |
|
|
|
|
Description |
DameWare Mini Remote Control contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when dumping the 'DWRCS' and 'DWRCC' process from memory into a file, which will disclose sensitive information resulting in a loss of confidentiality.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Information Disclosure
Impact:
Loss of Confidentiality
Exploit:
Exploit Available
Disclosure:
OSVDB Verified
|
|
Solution |
Upgrade to version 3.8 or 4.9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
|
|
Products |
|
DameWare Mini Remote Control
 |
4.8 |
4.7 |
4.6 |
4.5 |
4.4 |
4.2 |
4.1 |
4.0 |
3.74.0.0 |
3.73.0.0 |
3.72.0.0 |
3.71.0.0 |
3.68.0.0 |
3.66.0.0 |
3.65.0.0 |
3.64.0.0 |
3.63.0.0 |
3.62.0.0 |
3.61.0.0 |
3.60.0.0 |
3.50.x.x |
3.49.x.x |
3.48.0.0 |
3.46.0.0 |
3.45.0.0 |
3.44.0.0 |
3.43.0.0 |
3.42.0.0 |
3.41.0.0 |
3.21.0.0 |
3.2.0.0 |
3.1.0.0 |
3.0.0.0 |
3.70.x.x |
3.69.x.x |
3.67.x.x |
3.51.x.x |
|
|
|
|
|
|
Credit |
- Jordi Corrales - jordi
 shellsec.net - Shell Security
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
