| VID |
23057 |
| Severity |
20 |
| Port |
6129 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
The DameWare Mini Remote Control program has an information disclosure vulnerability.
DameWare Mini Remote Control is a lightweight remote control program intended primarily for administrators and help desks for quick and easy deployment without external dependencies and machine reboot. DameWare Mini Remote Control Server runs on the users desktop as SYSTEM for Microsoft Windows. A vulnerability in this program could allow a remote attacker to determine the type of operating system and which Service Pack is installed on the server.
* References:
http://www.dameware.com/download/
* Platforms Affected:
DameWare Mini Remote Control Any version
Microsoft Windows Any version |
| Recommendation |
No remedy available as of June 2014. To minimize the threat, recommend that network administrators disable it by blocking TCP port 6129 at your network perimeter. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
14132 (ISS) |
|
