Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Arbitrary File Creation via Symbolic Link leading to Denial-of-Service
Vulnerability Description
Race Condition in the Directory Validation Logic in the TeamViewer Full Client and Host prior version 15.69 on Windows allows a local non-admin user to create arbitrary files with SYSTEM privileges, potentially leading to a denial-of-service condition, via symbolic link manipulation during directory verification.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
TeamViewer Full Client和TeamViewer Host 安全漏洞
Vulnerability Description
TeamViewer Full Client和TeamViewer Host都是德国TeamViewer公司的一个远程控制软件。 TeamViewer Full Client和TeamViewer Host 15.69之前版本存在安全漏洞,该漏洞源于目录验证逻辑存在竞争条件,可能导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A