Unauthenticated remote attackers have exploited the TeamViewer flaw to execute suspicious codes to crack victims’ passwords.
TeamViewer, the popular remote-support software, has patched a high-severity flaw in the latest desktop app for Windows. If exploited, this flaw could allow remote, unauthorized attackers to execute code on users’ systems or crack the TeamViewer passwords.
TeamViewer is a proprietary software app used by businesses for remote-control functionalities, online meetings, desktop sharing, web conferencing and file transfer between computers. The recently discovered flaw stems from the Desktop for Windows app that has not properly quoted its custom uniform resource identifier (URI) handlers.
Source: Threatpost