VYPR

Remote Mini Control

by Dameware Development

CVEs (3)

  • CVE-2019-3957HigJun 7, 2019
    risk 0.50cvss 7.4epss 0.26

    Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating RsaSignatureLen during key negotiation, which could crash the application or leak sensitive information.

  • CVE-2019-3955HigJun 7, 2019
    risk 0.50cvss 7.5epss 0.19

    Dameware Remote Mini Control version 12.1.0.34 and prior contains a unauthenticated remote heap overflow due to the server not properly validating RsaPubKeyLen during key negotiation. An unauthenticated remote attacker can cause a heap buffer overflow by specifying a large…

  • CVE-2019-3956HigJun 7, 2019
    risk 0.48cvss 7.4epss 0.02

    Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating CltDHPubKeyLen during key negotiation, which could crash the application or leak sensitive information.