TeamViewer introduces Patch Management

Depending on the size of the company, the types of devices in use and the geographic distribution of the employees that use them, managing the patch management of an entire IT infrastructure can be quite a challenge. Especially when all it takes is one unpatched device to put the entire IT infrastructure at risk. With Patch Management by TeamViewer, it is now much easier to keep IT systems up to date and safe by automatically evaluating, testing, and applying patches to operating systems and even 3rd party applications - no matter how large or geographically dispersed a company is. From now on, users can not only detect outdated software versions with TeamViewer, but can easily take action and roll out a necessary patch in no time. With Patch Management, users will never miss an update again.

The key benefits of Patch Management with TeamViewer are:

Vulnerability detection: Patch Management detects vulnerabilities by automatically scanning for outdated software and operating system versions, providing users with a more in-depth insight into their IT infrastructure thereby increasing proactive intervention, well before incidents might occur.
Patch deployment: With Patch Management, users can remotely deploy patches for 3rd party applications and operating systems. They also have the possibility to automate this process via their patch management policies.
TeamViewer integration: Since Patch Management is fully integrated into TeamViewer, users can roll out their patch management solution to their entire network effortlessly with just a few clicks, through the TeamViewer Management Console.

Patch Management by TeamViewer includes the following features:

Windows & 3rd party application updates: Users can keep devices running Windows up to date by managing, monitoring and deploying updates for Windows as well as hundreds of 3rd party applications centrally and automatically.
Intuitive interface & easy roll-out: Users can see all the different status updates of their devices and all available patches from one convenient location. Fully integrated into TeamViewer, patches can be deployed remotely with the click of a button.
Automation & custom policies: In addition to the automatic vulnerability detection, users can set up Patch Management to also patch software and operating systems automatically. By defining individual patching policies, users can accommodate the needs of end-users, entire company departments or different customers.

Furthermore, Patch Management is part of TeamViewers Monitoring & Asset Management product, which provides users with the additional benefits of:

Proactive device monitoring: Monitor crucial system aspects such as online state, disk health, CPU usage and more. Users can set individual monitoring policies for these parameters and get notifications to prevent problems from happening.
Network device detection and monitoring: Monitor the availability and fault of all network devices such as printers, routers & switches by scanning for all connected devices to help reduce undesired downtimes and provide a stable work environment.
Increased IT system visibility: Users can keep track of all deployed assets and gain valuable insight into their IT infrastructure by gathering important device information such as internal and external IP addresses, the hardware in use, as well as installed software.

Remote support software company TeamViewer said Tuesday it issued a hotfix for a bug that allows users sharing a desktop session to gain control of the other’s computer without permission.

The bug was first publicized by a Reddit user “xpl0yt” on Monday who linked to a proof-of-concept example of a vulnerability created by the bug posted to GitHub by a user named “gellin”. TeamViewer confirmed the existence of the bug on Monday and issued a patch for Windows users on Tuesday.

The bug impacts Windows, macOS and Linux versions of TeamViewer. A patch for macOS and Linux versions of the software are expected late Tuesday or Wednesday, said Axel Schmidt, senior PR manager for TeamViewer.

This proof-of-concept vulnerability, allows an attacker to gain control of the presenter’s session or the viewer’s session without permission, said TJ Nelson, security researcher with Arbor Networks and the ASERT Research team that reviewed the PoC.

“Exploited as a presenter you are able to turn on a ‘switch sides’ feature (that usually needs the client to agree to) and change controls and sides, controlling a viewer’s computer. If exploited as a viewer, you are able to control the mouse of the presenter’s computer no matter what settings or permissions the presenter may have had set,” Nelson said.

Gellin, in a post describing the vulnerability, wrote the root of the vulnerability is an injectable C++ dll that uses naked inline hooking and direct memory modification to change TeamViewer permissions. This allows a user to “enable the ‘switch sides’ feature which is normally only active after you have already authenticated control with the client, and initiated a change of control/sides.”

“(This) allows for control of a mouse with disregard to a server’s current control settings and permissions,” gellin wrote.

In an interview with Threatpost, gellin said the bug requires both users to first be authenticated, and then an attacker would have to inject the PoC code into their own process with a tool such as a DLL injector or some type of code mapper.

“Once the code is injected into the process it’s programmed to modify the memory values within your own process that enables GUI elements that give you the options to switch control of the session,” gellin said. “Once you’ve made the request to switch controls there are no additional check on the server-side before it grants you access.”

Gellin points out the obvious. If an attacker does gain unauthorized control of a targeted computer the victim will easily be able to detect and stop the attacker by ending the session. However, gellin said before the patch was deployed, you could of easily weaponize the bug to disable a host’s visual input and force the targeted computer’s screen go black, hiding malicious activity.

Patches will be delivered automatically to those customers that have configured TeamViewer to accept automatic updates, Schmidt said. However, patches could take up to three to seven days before the update is installed. Users that do not have automatic updates set will be notified an update is available.

“Obviously, users can request an update through the client,” Schmidt said.

Nelson advises users patch for the bug fast. “Typically, these type bugs are leveraged quickly and broadly until they are patched,” he said. “This bug will be of particular interest to attackers carrying out malicious tech support scams. Attacker will no longer need to trick the victim into giving control of the system or running malicious software, instead they will be able to use this bug to gain access themselves,” he said.

On-PremiseCloud

Problem

You are trying to download TeamViewer 14 (MSI), TeamViewer 15 (MSI) and TeamViewer Host 15 (MSI) patches and the download fails.

Cause

The download is available only for customers who have purchased the license.

Resolution

Follow the steps given below to resolve this issue:

1. Download the updates of TeamViewer and TeamViewer Host manually.
2. Rename the downloaded file in this format:<patchID>-<PatchName>.
3. Navigate to <DS_INSTALL_DIR> -> Replication -> Store and place the renamed files.
4. Then go to Missing Patches -> Search for the Bulletin ID TU-057 (for TeamViewer) or TU-064 (for TeamViewer Host) which has the same Patch Name and click on Install Patch.

If you have changed the location of the patch store, then navigate to the path mentioned in the registry value which has been highlighted in the screenshot below:

DesktopCentral -> DCDistributionServer -> PatchStore_Directory

If the issue persists even after following the above-mentioned resolutions, please feel free to contact Support.

Depending on the size of the company, the types of devices in use and the geographic distribution of the employees that use them, managing the patch management of an entire IT infrastructure can be quite a challenge. Especially when all it takes is one unpatched device to put the entire IT infrastructure at risk. TeamViewer Patch Patch Management by TeamViewer, it is TeamViewer Patch much easier to keep IT systems up to date and safe by automatically evaluating, testing, and applying patches to operating systems and even 3rd party applications - no matter how large or geographically dispersed a company is, TeamViewer Patch. From now on, users can not only detect outdated software versions with TeamViewer, but can easily take action and roll out a necessary patch in no time. With Patch Management, users will never miss an update again.

The TeamViewer Patch benefits of Patch Management with TeamViewer are:

Vulnerability detection: Patch Management detects vulnerabilities by automatically scanning for outdated software and operating system versions, TeamViewer Patch, providing users with a more in-depth insight into their IT infrastructure thereby increasing proactive intervention, well before incidents might occur.
Patch deployment: With Patch Management, users can remotely deploy patches for 3rd party applications and operating systems. They also have the possibility to automate this process via their patch management policies.
TeamViewer integration: Since Patch Management is fully integrated into TeamViewer, users can roll out their patch management solution to their entire network effortlessly with just a few clicks, through the TeamViewer Management Console.

Patch Management by TeamViewer includes the following features:

Windows & 3rd party application updates: Users can keep devices running Windows up to date by managing, monitoring and deploying updates for TeamViewer Patch as well as hundreds of 3rd party applications centrally and automatically.
Intuitive interface & easy roll-out: Users can see all the different status updates of their devices and all available patches from one convenient location. Fully integrated into TeamViewer, TeamViewer Patch, patches can be deployed remotely with the click of a button.
Automation & custom policies: In addition to the automatic vulnerability detection, users can set up Patch Management to also patch software and operating systems automatically. By defining individual patching policies, users can accommodate the needs of end-users, entire company departments or different customers.

Furthermore, Patch Management is part of TeamViewers Monitoring & Asset Management product, which provides users with the additional benefits of:

Proactive device monitoring: Monitor crucial system aspects such as online state, disk health, CPU usage and more. Users can set individual monitoring policies for these parameters and get notifications to prevent problems from happening.
Network device detection and monitoring: Monitor the availability and fault of all network devices such as printers, routers & switches by scanning for all connected devices to help reduce undesired downtimes and provide a stable work environment.
Increased IT system visibility: Users can keep track of all deployed assets and gain valuable insight into their IT infrastructure by gathering important device information such as internal and external IP addresses, the hardware in use, as well as installed software.

Remote support software company TeamViewer said Tuesday it issued a hotfix for a bug that allows users sharing a desktop TeamViewer Patch to gain control of the other’s computer without permission.

The bug was first publicized by a Reddit user “xpl0yt” on Monday who linked to a proof-of-concept example of a vulnerability created by the bug posted to GitHub by a user named “gellin”. TeamViewer confirmed the existence of the bug on Monday and issued a patch for Windows users on Tuesday.

The bug impacts Windows, macOS and Linux versions of TeamViewer. A patch for macOS and Linux versions of the software are expected late Tuesday or Wednesday, said Axel Schmidt, senior PR manager for TeamViewer.

This proof-of-concept vulnerability, allows an attacker to gain control of the presenter’s session or the viewer’s session without permission, said TJ Nelson, security researcher with Arbor Networks and the ASERT Research team that reviewed the PoC.

“Exploited TeamViewer Patch a presenter you are able to turn on a ‘switch sides’ feature (that usually needs the client to agree to) and change controls TeamViewer Patch sides, controlling a viewer’s computer. If exploited as a viewer, you are able to control the mouse of the presenter’s computer no matter what settings or permissions the presenter may have had set,” Nelson said.

Gellin, in a post describing the vulnerability, wrote the root of the vulnerability is an injectable C++ dll that uses naked inline hooking and direct memory modification to change TeamViewer permissions. This allows a user to “enable the ‘switch sides’ feature which is normally only active after you have already authenticated control with the client, and initiated a change of control/sides.”

“(This) allows for control of a mouse with disregard to a server’s current control settings and permissions,” gellin wrote.

In an interview with Threatpost, gellin said the bug requires both users to first be authenticated, and then an attacker would have to inject the PoC code into their own process with a tool such as a DLL injector or some type of code mapper.

“Once the code is injected into the process it’s programmed to modify the memory values within your own process that enables GUI elements that give you the options to switch control of the session,” gellin said, TeamViewer Patch. “Once you’ve made the request to switch controls there are no additional check on TeamViewer Patch server-side before it grants you access.”

Gellin points out the obvious. If an attacker does gain unauthorized control of a targeted computer the victim will easily be able to detect and stop the attacker by ending the session. However, gellin said before the patch was deployed, you could of easily weaponize the bug to disable a host’s visual input and force the targeted computer’s screen go black, hiding malicious activity.

Patches will be delivered automatically to those customers that have configured TeamViewer to accept automatic updates, Schmidt said. However, patches could take up to three to seven days before the update is installed. Users that do not have automatic updates set will be notified an update is available.

“Obviously, users can request an update through the client,” Schmidt said.

Nelson advises users patch for the bug fast. “Typically, these type bugs are leveraged quickly and broadly until they are patched,” he said. “This bug will be of particular interest to attackers carrying out malicious tech support scams. Attacker will no longer need to trick the victim into giving control of the system or running malicious software, TeamViewer Patch, instead they will be able to use this bug to gain access themselves,” he TeamViewer Patch

TeamViewer Patch - amusing question

';} ?>