SolarWinds Dameware Mini Remote Control Unauthenticated RCE Exploit

The Solarwinds Dameware Mini Remote Client agent supports smart card authentication by default which allows a user to upload an executable to be executed on the DWRCS.exe host. An unauthenticated, remote attacker can request smart card login and upload and execute an arbitrary executable.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2019-3980
Released Date: 
Wednesday, November 6, 2019 - 18:00