CVE DATABASE / CVE-2004-1852
CVE-2004-1852
CVSS 5 · MEDIUM
Summary
DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, which allows remote attackers to gain sensitive information.
CVSS 2.0 breakdown
| Base score | 5 (MEDIUM) |
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | PARTIAL |
| Integrity | NONE |
| Availability | NONE |
Weakness type (CWE)
Affected products
Solarwinds dameware mini remote control
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://marc.info/?l=bugtraq&m=108016344224973&w=2
- http://secunia.com/advisories/11205
- http://securitytracker.com/id?1009557
- http://www.dameware.com/support/security/bulletin.asp?ID=SB3
- http://www.osvdb.org/4547
- http://www.securityfocus.com/bid/9959
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15586
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.