Vulnerabilities

CVE-2018-16550

by Fred · 05/09/2018

TeamViewer 10.x through 13.x allows remote attackers to bypass the brute-force authentication protection mechanism by skipping the "Cancel" step, which makes it easier to determine the correct value of the default 4-digit PIN.

Date published : 2018-09-05

TeamViewer bans your ID if you will try to connect with the wrong password and close the connection 10 times, but if you don't finalization a connection (on the screen "Cancel" button), you can brute 4-digit PIN-code.
cmd "C:PFTeamViewerTeamViewer.exe" -i %ID% -P %PIN% pic.twitter.com/FpddHN5KxQ

— Vahagn Vardanian (@vah_13) September 4, 2018

Similar

Tags: Cybersecurity Alert