DameWare Mini Remote Control Pre-Authentication Remote Overflow

This script is Copyright (C) 2005-2016 Tenable Network Security, Inc.


Synopsis :

Arbitrary code can be executed on the remote host.

Description :

The remote host is running DameWare Mini Remote Control. The remote
version of this software is affected by a buffer overflow
vulnerability.

An attacker may be able to exploit this flaw by sending a specially
crafted packet to the remote host.

A successful exploitation of this vulnerability would result in remote
code execution.

Solution :

Upgrade to version 3.73.0.0 or later

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 10.0
(CVSS2#E:ND/RL:U/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 19553 (dameware_mini_remote_control_overflow.nasl)

Bugtraq ID: 9213

CVE ID: CVE-2003-1030

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now