#VU22442 Insecure DLL loading in TeamViewer


Published: 2019-10-31

Vulnerability identifier: #VU22442

Vulnerability risk: High

CVSSv3.1: 7.9 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2019-18196

CWE-ID: CWE-427

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
TeamViewer
Client/Desktop applications / Other client software

Vendor: TeamViewer

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to the application loads DLL libraries in an insecure manner. A remote authenticated administrator can install DLL on the target system, restart a service and execute arbitrary code on victim's system.

Note: This vulnerability affects the following versions:

  • versions up to 11.0.133222 (fixed in 11.0.214397)
  • 12.0.X (fixed in 12.0.214399)
  • 13.X.X (fixed in 13.2.36216)
  • 14.X.X (fixed in 14.7.1965)

    • Mitigation
    Install updates from vendor's website.

    Vulnerable software versions

    TeamViewer: All versions

    External links
    http://community.teamviewer.com/t5/Announcements/Security-bulletin-CVE-2019-18196/td-p/74564

    Q & A

    Can this vulnerability be exploited remotely?

    Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

    Is there known malware, which exploits this vulnerability?

    No. We are not aware of malware exploiting this vulnerability.


    Latest bulletins with this vulnerability


    Insecure DLL loading in TeamViewer