Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating RsaSignatureLen during key negotiation, which could crash the application or leak sensitive information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: tenable

Published: 2019-06-07T20:02:03

Updated: 2024-08-04T19:26:27.638Z

Reserved: 2019-01-03T00:00:00

Link: CVE-2019-3957

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-06-07T21:29:02.463

Modified: 2021-07-21T11:39:23.747

Link: CVE-2019-3957

cve-icon Redhat

No data.