| VID |
23138 |
| Severity |
40 |
| Port |
3129 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
The DameWare Mini Remote Control, according to its version number, has a buffer overflow vulnerability. DameWare Mini Remote Control is a lightweight remote control program intended primarily for administrators and help desks for quick and easy deployment without external dependencies and machine reboot. DameWare Mini Remote Control versions 3.72.0.0 and earlier are vulnerable to a buffer overflow vulnerability, caused due to a boundary error when handling authentication traffic. Since the buffer overflow occurs in a section of the code used to handle authentication, by sending a specially crafted packet to the vulnerable server (default port 6129/TCP), a remote unauthenticated attacker can execute arbitrary code on the system.
* References:
http://www.kb.cert.org/vuls/id/909678
http://archives.neohapsis.com/archives/bugtraq/2003-12/0286.html
http://archives.neohapsis.com/archives/bugtraq/2004-01/0076.html
http://archives.neohapsis.com/archives/bugtraq/2003-12/0221.html
http://www.secunia.com/advisories/10439/
* Platforms Affected:
DameWare Mini Remote Control versions 3.72.0.0 and earlier
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of DameWare (3.73.0.0 or later), available from the DameWare Products Web site at at http://www.dameware.co.uk/ |
| Related URL |
CVE-2003-1030 (CVE) |
| Related URL |
9213 (SecurityFocus) |
| Related URL |
14001 (ISS) |
|
