TeamViewer through 13.1.1548 stores a password in Unicode format within TeamViewer.exe process memory between "[00 88] and "[00 00 00]" delimiters, which might make it easier for attackers to obtain sensitive information by leveraging an unattended workstation on which TeamViewer has disconnected but remains running.
References
Link | Resource |
---|---|
https://github.com/vah13/extractTVpasswords | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-07-17T02:00:00
Updated: 2018-07-17T02:57:01
Reserved: 2018-07-16T00:00:00
Link: CVE-2018-14333
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-07-17T02:29:00.347
Modified: 2018-09-17T19:51:15.093
Link: CVE-2018-14333
JSON object: View
Redhat Information
No data.
CWE