DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
BID:9909
Info
DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
| Bugtraq ID: | 9909 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 17 2004 12:00AM |
| Updated: | Mar 17 2004 12:00AM |
| Credit: | Discovery of this vulnerability has been credited to ax09001h <[email protected]>. |
| Vulnerable: |
DameWare Development Mini Remote Control Server 4.0 DameWare Development Mini Remote Control Server 3.73 .0.0 DameWare Development Mini Remote Control Server 3.72 .0.0 DameWare Development Mini Remote Control Server 3.71 .0.0 DameWare Development Mini Remote Control Server 3.70 .0.0 |
| Not Vulnerable: |
DameWare Development Mini Remote Control Server 4.2 .0.0 DameWare Development Mini Remote Control Server 3.74 .0.0 |
Discussion
DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
DameWare Mini Remote Control Server has been reported to be prone to a weak encryption implementation.
It has been reported that analysis of encrypted traffic will reveal the block cipher that is used by DameWare Mini Remote Control to encrypt the plaintext data using ECB (Electronic Code Book) mode. This may ultimately allow an attacker to determine the block cipher and thereby expose plaintext credentials by reversing the process.
DameWare Mini Remote Control Server has been reported to be prone to a weak encryption implementation.
It has been reported that analysis of encrypted traffic will reveal the block cipher that is used by DameWare Mini Remote Control to encrypt the plaintext data using ECB (Electronic Code Book) mode. This may ultimately allow an attacker to determine the block cipher and thereby expose plaintext credentials by reversing the process.
Exploit / POC
DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
The following block cipher has been supplied:
unsigned char dw_key[ ] = { 0x29, 0x23, 0x18, 0x84, 0x2C, 0x6C, 0xD6, 0xAE, 0x52, 0x90, 0x49, 0xF1, 0x7C, 0xBB, 0x90, 0xEB};
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
The following block cipher has been supplied:
unsigned char dw_key[ ] = { 0x29, 0x23, 0x18, 0x84, 0x2C, 0x6C, 0xD6, 0xAE, 0x52, 0x90, 0x49, 0xF1, 0x7C, 0xBB, 0x90, 0xEB};
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
Solution:
The vendor has released Mini Remote Control Server 3.74 to address this issue in 3.x versions and 4.2 to address this issue in 4.x versions. Additional information can be obtained from the vendor advisory available in web references.
DameWare Development Mini Remote Control Server 4.0
Solution:
The vendor has released Mini Remote Control Server 3.74 to address this issue in 3.x versions and 4.2 to address this issue in 4.x versions. Additional information can be obtained from the vendor advisory available in web references.
DameWare Development Mini Remote Control Server 4.0
-
DameWare Development Mini Remote Control Server 4.2
http://www.dameware.com/download/
References
DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability
References:
References:
- DameWare Mini Remote Control Encryption Key issues resolved with the release of (DameWare Development)
- DameWare Mini Remote Control Server Product Page (DameWare Development)