CVE-2019-3957

Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating RsaSignatureLen during key negotiation, which could crash the application or leak sensitive information.
References
Link Resource
https://www.tenable.com/security/research/tra-2019-26 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:dameware_mini_remote_control:*:*:*:*:*:*:*:*

Information

Published : 2019-06-07 14:29

Updated : 2021-07-21 04:39


NVD link : CVE-2019-3957

Mitre link : CVE-2019-3957


JSON object : View

CWE
CWE-125

Out-of-bounds Read

CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

solarwinds

  • dameware_mini_remote_control