Critical Apache Guacamole Flaws Put Remote Desktops at Risk of Hacking

guest · Jul 3, 2020

Critical Apache Guacamole Flaws Put Remote Desktops at Risk of Hacking
July 2, 2020
https://thehackernews.com/2020/07/apache-guacamole-hacking.html

A new research has uncovered multiple critical reverse RDP vulnerabilities in Apache Guacamole, a popular remote desktop application used by system administrators to access and manage Windows and Linux machines remotely.

The reported flaws could potentially let bad actors achieve full control over the Guacamole server, intercept, and control all other connected sessions.
According to a report published by Check Point Research and shared with The Hacker News, the flaws grant "an attacker, who has already successfully compromised a computer inside the organization, to launch an attack on the Guacamole gateway when an unsuspecting worker tries to connect to an infected machine."

It's worth pointing out that FreeRDP, an open-source RDP client, had its own fair share of remote code execution flaws, which were disclosed early last year following the release of 2.0.0-rc4.
Click to expand...

Check Point Research: Hole-y Guacamole! Fixing critical vulnerabilities in Apache’s popular remote desktop gateway

While Apache Guacamole is popular, with over 10 million of its docker downloads worldwide, Check Point’s researchers found that some of Guacamole’s ingredients didn’t meet the required security standards. In particular, it was vulnerable to several critical Reverse RDP Vulnerabilities, and affected by multiple new vulnerabilities found in FreeRDP.

In particular, all versions of Guacamole that were released before January 2020 are using vulnerable versions of FreeRDP.
Click to expand...

Full research: Would you like some RCE with your Guacamole?

Log in or Sign up

Critical Apache Guacamole Flaws Put Remote Desktops at Risk of Hacking

guest Guest

Log in or Sign up

Critical Apache Guacamole Flaws Put Remote Desktops at Risk of Hacking

guest Guest

Useful Searches