Milner ImageDirector Capture DES Cryptography Vulnerability Allowing Database Credential Brute Forcing

Vulnerability

A vulnerability exists in the Password class of C2SConnections.dll within Milner ImageDirector Capture, specifically in versions from 7.0.9.0 prior to 7.6.3.25808. This vulnerability arises from the use of the Data Encryption Standard (DES), a broken and risky cryptographic algorithm, which allows for brute-forcing of encrypted database credentials. Exploiting this vulnerability could lead to unauthorized access to sensitive database information.

Impact

Successful exploitation of this vulnerability allows for brute-forcing of encrypted database credentials, potentially leading to unauthorized access to the database.

Added: Jan 20, 2026, 11:39 PM

Updated: Jan 20, 2026, 11:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Milner ImageDirector Capture DES Cryptography Vulnerability Allowing Database Credential Brute Forcing

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating