Home

CVE-2004-1852

Description

DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, which allows remote attackers to gain sensitive information.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.259

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control (x64) 3.70_.0.0Windows
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control (x64) 3.71_.0.0Windows
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control (x64) 3.72_.0.0Windows
Vulnerabilities CVE-2004-1852 are affected in Dameware Mini Remote Control (x64) 3.73_.0.0Windows
Vulnerabilities CVE-2004-1852,CVE-2005-2842 are affected in Dameware Mini Remote Control (x64) 4.0Windows
Vulnerabilities CVE-2004-1851,CVE-2004-1852 are affected in Dameware Mini Remote Control (x64) 4.1_.0.0Windows
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control 3.70_.0.0Windows
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control 3.71_.0.0Windows
Vulnerabilities CVE-2003-1030,CVE-2004-1852 are affected in Dameware Mini Remote Control 3.72_.0.0Windows
Vulnerabilities CVE-2004-1852 are affected in Dameware Mini Remote Control 3.73_.0.0Windows
Vulnerabilities CVE-2004-1852,CVE-2005-2842 are affected in Dameware Mini Remote Control 4.0Windows
Vulnerabilities CVE-2004-1851,CVE-2004-1852 are affected in Dameware Mini Remote Control 4.1_.0.0Windows
Vulnerabilities CVE-2004-1852 are affected in SolarWinds Dameware Mini Remote Control Service 3.73Windows
Vulnerabilities CVE-2004-1852 are affected in SolarWinds Dameware Mini Remote Control Service 4.1Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234