Lucene search

[email protected]CVE-2005-1166

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-1166

2005-05-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-1166

dntus26

dameware nt utilities

dwrcs

miniremote control

cleartext storage

memory security

6.6 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

25.3%

JSON

The DNTUS26 process in Dameware NT Utilities and the DWRCS process in MiniRemote Control 4.9 and earlier stores the username and password in cleartext in memory, which could allow attackers to obtain sensitive information.

CPENameOperatorVersion
dameware_development:dameware_nt_utilitiesdameware development dameware nt utilitiesle4.9
dameware_development:miniremote_controldameware development miniremote controlle4.9

CPE	Name	Operator	Version
dameware_development:dameware_nt_utilities	dameware development dameware nt utilities	le	4.9
dameware_development:miniremote_control	dameware development miniremote control	le	4.9

References

marc.info/?l=bugtraq&m=111358825101305&w=2

securitytracker.com/id?1013725

www.osvdb.org/15275

www.shellsec.net/leer_advisory.php?id=7

6.6 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

25.3%

JSON

Related for CVE-2005-1166

nessus2