Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 APP:MISC:SOLARWDS-DAMEWARE-ID

Severity

 Minor

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 SolarWinds DameWare Mini Remote Control Information Disclosure

Release Date

 2019/11/28

Update Number

 3228

Supported Platforms

 srx-17.3+, srx-branch-17.4+, vsrx-15.1+, vsrx3bsd-18.2+

APP: SolarWinds DameWare Mini Remote Control Information Disclosure


This signature detects attempts to exploit a known vulnerability against SolarWinds DameWare Mini Remote Control. A successful attack can lead to sensitive information disclosure.

Extended Description

Dameware Remote Mini Control version 12.1.0.34 and prior contains an unauthenticated remote buffer over-read due to the server not properly validating CltDHPubKeyLen during key negotiation, which could crash the application or leak sensitive information.

Affected Products

  • Dameware remote_mini_control 12.1.0.34

References

  • CVE: CVE-2019-3956

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out