- Description
- The DNTUS26 process in Dameware NT Utilities and the DWRCS process in MiniRemote Control 4.9 and earlier stores the username and password in cleartext in memory, which could allow attackers to obtain sensitive information.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dameware_development:dameware_nt_utilities:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4276059F-F29F-4898-8436-748EE8AEEFF8",
"versionEndIncluding": "4.9"
},
{
"criteria": "cpe:2.3:a:dameware_development:miniremote_control:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D23CE158-8E62-414A-83E0-1CC8AFA91AE6",
"versionEndIncluding": "4.9"
}
],
"operator": "OR"
}
]
}
]