Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Dameware Mini Remote Control Sends a File Encryption Key as Clear Text
Categorie: Vulnerability
Posted: 2004-03-26 by ReCall
Views: 382
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: A vulnerability was reported in Dameware Mini Remote Control. The software transmits an encryption key over the network in clear text.

It is reported that the software sends a Blowfish encryption key over the network without encryption. The 2nd to last string of 16 bytes prior to the file being transferred is reportedly the file encryption key.

It is also reported that the software uses an insufficiently random generator to create the encryption key, facilitating key cracking attacks.
Impact: A remote user monitoring the network between the two encryption endpoints can determine the encryption key and gain access to the transmitted file.
Solution: No solution was available at the time of this entry.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=786

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES