Detections
Analytics

TeamViewer Windows Service DLL Sideloading Vulnerability

medium Nessus Plugin ID 135709

Language:

Synopsis

The remote Windows host contains a program that is affected by an arbitrary code execution vulnerability.

Description

A Dll sideloading vulnerability exist in TeamViewer 11 prior to 11.0.214397, TeamViewer 12 prior to 12.0.214399, TeamViewer 13 prior to 13.2.36216,TeamViewer 11 prior to 11.0.214397, on Windows could allow an attacker to perform code execution via service restart where the DLL was previously installed with administrative privileges in the target system.

Solution

Upgrade for Teamviewer 11, upgrade to 11.0.214397 or later. For Teamviewer 12, upgrade to 12.0.214399 or later.
For Teamviewer 13, upgrade to 13.2.36216 or later. For Teamviewer 14, upgrade to 14.7.1965. Alternatively, apply the workarounds outlined in the vendor advisory.

See Also

http://www.nessus.org/u?cc009a84

Plugin Details

Severity: Medium

ID: 135709

File Name: teamviewer_14_7_1965.nasl

Version: 1.2

Type: local

Agent: windows

Family: Windows

Published: 4/17/2020

Updated: 4/23/2020

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Temporal Score: 5.1

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2019-18196

CVSS v3

Risk Factor: Medium

Base Score: 6.7

Temporal Score: 5.8

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:teamviewer:teamviewer

Required KB Items: SMB/TeamViewer/Installed, installed_sw/TeamViewer/

Exploit Ease: No known exploits are available

Patch Publication Date: 10/22/2019

Vulnerability Publication Date: 10/22/2019

Reference Information

CVE: CVE-2019-18196

CWE: 426