{"id":28542,"date":"2022-05-17T23:42:04","date_gmt":"2022-05-17T20:42:04","guid":{"rendered":"https:\/\/kutaybilen.com.tr\/?p=28542"},"modified":"2022-05-17T23:42:04","modified_gmt":"2022-05-17T20:42:04","slug":"teamviewerda-tehlikeli-bir-guvenlik-acigi-kesfedildi","status":"publish","type":"post","link":"https:\/\/kutaybilen.com.tr\/?p=28542","title":{"rendered":"TeamViewer&#8217;da Tehlikeli Bir G\u00fcvenlik A\u00e7\u0131\u011f\u0131 Ke\u015ffedildi"},"content":{"rendered":"<p>Windows&#39;un uzaktan masa\u00fcst\u00fc temas yaz\u0131l\u0131m\u0131 <strong>TeamViewer<\/strong> kullan\u0131c\u0131lar ortas\u0131nda epeyce tan\u0131nan. \u015eayet ki siz de bu tan\u0131nan yaz\u0131l\u0131m\u0131n kullan\u0131c\u0131lar\u0131ndan bir tanesiyseniz program\u0131n son s\u00fcr\u00fcm\u00fcn\u00fc kullan\u0131p kullanmad\u0131\u011f\u0131n\u0131z\u0131 denetim edin.<\/p>\n<p>Geli\u015ftirici tak\u0131m, yak\u0131n vakitte TeamViewer i\u00e7in yeni bir s\u00fcr\u00fcm yay\u0131nlad\u0131lar. Bu s\u00fcr\u00fcmde, patlat\u0131lmas\u0131 halinde sald\u0131rganlar\u0131n sistem \u015fifrenizi \u00e7almas\u0131na ve sisteminizi tehlikeye atmas\u0131na sebep olabilecek kimi <strong>\u00f6nemli g\u00fcvenlik a\u00e7\u0131klar\u0131n\u0131n<\/strong> kapat\u0131ld\u0131\u011f\u0131 yamalar bulunuyor.<\/p>\n<p><b>TeamViewer&#39;daki g\u00fcvenlik a\u00e7\u0131\u011f\u0131<\/b><\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/78\/8156a8191d62300499a6d3f0d4a57347e0a07573.jpeg\"\/><\/p>\n<p>Bu a\u00e7\u0131ktaki as\u0131l endi\u015felendirici \u015fey ise kurban\u0131n \u00e7ok fazla etkile\u015fimini gerektirmeden, yaln\u0131zca ziyanl\u0131 bir internet sitesini bir kez ziyaret etmesine ikna ederek, <strong>neredeyse otomatik olarak uygulanabilmesi. <\/strong><\/p>\n<p>A\u00e7\u0131\u011f\u0131 kolay bir bi\u00e7imde anlatmak gerekirse: sald\u0131rgan, bir web sitesinden <strong>TeamViewer<\/strong>&#39;\u0131n URI \u015femas\u0131n\u0131 kurban\u0131n sistemindeki \u015furas\u0131 uygulamay\u0131 kand\u0131rmak ve sald\u0131rgan\u0131n sahip oldu\u011fu uzaktan SMB payla\u015f\u0131m\u0131yla temas ba\u015flatmak i\u00e7in sonuna kadar kullanabiliyor. Bu sayede SMB kimlik do\u011frulama sald\u0131r\u0131s\u0131 tetikleniyor. Sistemdeki kullan\u0131c\u0131 ismi ve NTLMv2 kar\u0131\u015ft\u0131r\u0131lm\u0131\u015f \u015fifre s\u00fcr\u00fcm\u00fc sald\u0131rgana s\u0131zd\u0131r\u0131l\u0131yor. Sald\u0131rgan, \u00e7al\u0131nan kimlik bilgilerini kurban\u0131n bilgisayar\u0131n\u0131 ve a\u011f kaynaklar\u0131n\u0131 do\u011frulamak i\u00e7in kullanabiliyor.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/78\/99732610ac50ed4d089d4851c00926913554bcdf.png\"\/><\/p>\n<p>Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan faydalan\u0131labilmesi i\u00e7in ise bir internet sitesine <strong>ziyanl\u0131 bir &#39;iframe&#39; g\u00f6mmeli<\/strong> ve kurban\u0131 bu adrese t\u0131klamas\u0131 i\u00e7in kand\u0131rmal\u0131. \u015eayet ki kurban bu URL&#39;ye t\u0131klarsa TeamViwer, Windows masa\u00fcst\u00fc istemcisini otomatik olarak \u00e7al\u0131\u015ft\u0131r\u0131yor ve uzaktan SMB payla\u015f\u0131m\u0131n\u0131 a\u00e7\u0131yor.<\/p>\n<p>Bu a\u00e7\u0131\u011f\u0131 ke\u015ffeden <strong>Jeffrey Hoffman<\/strong>, bu a\u00e7\u0131\u011f\u0131n &#39;Unquoted URI handler&#39; olarak kategorize edildi\u011fini ve URI handlers teamviewer10, teamviewer8, teamviewerapi, tvchat1, tvcontrol1, tvfiletransfer1, tvjoinv8, tvpresent1, tvsendfile1, tvsqcustomer1, tvsqsupport1, tvvideocall1 ve tvvpn1&#39;i etkiledi\u011fini s\u00f6yledi.<\/p>\n<p>\u00dcstte da s\u00f6yledi\u011fimiz \u00fczere geli\u015ftirici tak\u0131m, TeamViewer&#39;\u0131 yamalad\u0131. Ayr\u0131yeten bu a\u00e7\u0131k \u015fu ana kadar geni\u015f \u00f6l\u00e7ekli patlat\u0131lmad\u0131 fakat program\u0131n pop\u00fclerli\u011fini d\u00fc\u015f\u00fcnecek olursak her vakit maksat tahtas\u0131na oturtulma ihtimali bulunuyor. Hasebiyle program\u0131n <strong>son s\u00fcr\u00fcm\u00fcn\u00fc<\/strong> kullanman\u0131z k\u0131ymetli.<\/p>\n<div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>Windows&#39;un uzaktan masa\u00fcst\u00fc temas yaz\u0131l\u0131m\u0131 TeamViewer kullan\u0131c\u0131lar ortas\u0131nda epeyce tan\u0131nan. \u015eayet ki siz de bu tan\u0131nan yaz\u0131l\u0131m\u0131n &#8230;<\/p>\n","protected":false},"author":1,"featured_media":28543,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[854],"tags":[1532,3306,1254],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28542"}],"collection":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=28542"}],"version-history":[{"count":1,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28542\/revisions"}],"predecessor-version":[{"id":28544,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/28542\/revisions\/28544"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/media\/28543"}],"wp:attachment":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=28542"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=28542"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=28542"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}