- DameWare
-
DameWare is the manufacturer of DameWare NT Utilities. Part of this utility collection is DameWare Mini Remote Control. The newest version as of 2011-07-09 is v7.5.6.0.
Contents
DameWare NT Utilities
DameWare NT Utilities (sometimes known as DNTU) is an enterprise system management application for Windows NT/2000/XP/2003/Vista/2008/7 which is designed to allow administrators to have control over remote client computers. DNTU provides an integrated collection of Microsoft Windows NT administration utilities, incorporated within a centralized interface for remote management of Windows servers and workstations. Most all of the standard utilities are included within DNTU's Explorer-style interface, many of which have been enhanced to provide added functionality, and increase ease of use. DNTU also contains custom NT tools including the DameWare Mini Remote Control program and the Exporter, and also supports the use of standard shell property pages and shell context menus.[1]
DameWare Mini Remote Control
This program is a remote control software. It is similar to Virtual Network Computing, but contains additional features such as the ability to install the server application on-demand, pass-through authentication, and smart card support. Functions such as support for multiple monitor environments, encryption (via Microsoft's Cryptographic Service,) and file transfer are also present. This program is designed for Windows XP, Vista, 7 and Windows Server 2008 operating systems.
Security defects in Dameware
Versions of DameWare Mini Remote Control prior to 2004 could be exploited by an attacker to take over control of a remote machine. The exploit used a buffer overflow in the DameWare code. This security defect was actively used by attackers.[2]
Although this problem was reported as fixed in 2004, a similar problem was reported and confirmed in 2005.[3]
Several additional less-serious vulnerabilities are known.[4]
See also
References
- ^ Source: http://www.dameware.com/products/dntu/
- ^ United States Computer Emergency Readiness Team, Department of Homeland Security (December 22, 2003). "Vulnerability Note VU#909678 - DameWare Mini Remote Control vulnerable to buffer overflow via specially crafted packets". http://www.kb.cert.org/vuls/id/909678.
- ^ United States Computer Emergency Readiness Team, Department of Homeland Security (September 7, 2005). "Vulnerability Note VU#170905 - DameWare Mini Remote Control vulnerable to buffer overflow via specially crafted authentication requests". http://www.kb.cert.org/vuls/id/170905.
- ^ MITRE Corporation (September 7, 2005). "Common Vulnerabilities and Exposures List - DameWare". http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dameware.
External links
Categories:- Software companies of the United States
- Remote desktop
- Remote administration software
Wikimedia Foundation. 2010.