• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

DameWare Mini Remote Control Server Weak Encryption Implementation Vulnerability

DameWare Mini Remote Control Server has been reported to be prone to a weak encryption implementation.

It has been reported that analysis of encrypted traffic will reveal the block cipher that is used by DameWare Mini Remote Control to encrypt the plaintext data using ECB (Electronic Code Book) mode. This may ultimately allow an attacker to determine the block cipher and thereby expose plaintext credentials by reversing the process.