The recent announcement of a permissions bug in popular application TeamViewer, which allows users to ‘switch sides’ by seizing unauthorised control of each other’s mouse without permission, has caused some consternation. Engineers have responded swiftly by releasing a hotfix for the bug, which affects Windows, macOS and Linux.
While it is relatively easy to nullify the effects of this proof-of-concept vulnerability by simply ending the session, malicious actors could adapt the bug to allow them to black out the victim’s screen to cover their nefarious exploits. All parties are consequently urging users to install the patches without delay.
TeamViewer is a computer software package for remote control, desktop sharing, online meetings, web conferencing and file transfer between computers. It is particularly popular amongst remote support teams and is used numerous companies who outsource their IT support. Chances are, your company employs it as well, so it’s worth checking up on this.