If you use DameWare Development Mini Remote Control Server it is recommended that you use the current 220.127.116.11 version. Earlier versions could permit an attacker to run unauthorized code on a vulnerable computer. Further information about the recently identified DameWare buffer overflow vulnerability can be found at: http://www.securityfocus.com/bid/9213/info/).
In addition, DameWare software versions prior to 18.104.22.168 were identified as vulnerable to an exploit that could provide system privileges to a successful attacker (see: http://www.securityfocus.com/bid/8395/discussion/). We will publish additional information about the hostile programs that are targeting DameWare programs as it becomes available. We are currently identifying and isolating campus computers that are generating unusually high levels of TCP 6129 traffic.