Showing posts from December, 2017

Hacking TeamViewer? New Vulnerability Disclosed

TeamViewer – The Remote - Support software is found to have a critical vulnerability which could allow users sharing desktop to gain complete control of the other end without their permission.
It was first disclosed by a Reddit user “xpl0yt” on Monday. POC of this vulnerability is posted on GitHub by “gellin”, which is an injectable C++ DLL that uses naked inline hooking and direct memory modification to change TeamViewer permissions.
The injectable C++ DLL can be used by both server and client using DLL Injector. If the Server exploits, it would allows viewers to enable the feature “switch sides”, which is activated only after the server authenticates the control with the client. Which will allow the server to switch the sides.
If the Client exploits, it would allow the client to take control of server . As specified on Github “Allows for control of mouse with disregard to servers current control settings and permissions”.

This affects TeamViewer versions of Windows, MacOS and Linux. TeamVi…


Configuring Network Settings to setup a static IP address on Raspberry Pi
Connecting to your Raspberry Pi without a HDMI display ?  You’ll need its IP address to connect. There are two main forms, static and dynamic. By default, Raspberry Pi will be configured with a dynamic IP address.

Dynamic IP address can change each time you reboot or restart the services, not ideal if you are running Raspberry Pi headless, so you need to keep checking the IP address and connect.

Static IP address is somewhat permanent, it won’t change. So you know your IP address.

To setup a static IP address,
1. Check your IPsudo ifconfig
pi@raspberrypi:~$ ifconfig
eth0      Link encap:Ethernet  HWaddr 08:00:27:E5:E0:11
          inet addr:  Bcast:  Mask:           inet6 addr: fe80::a00:27ff:fee5:e011/64 Scope:Link           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1           RX packets:104 errors:0 dropped:0 overruns:0 frame:0           TX packets:80 errors:0 dropped:0 overr…