Forum Discussion

Active Contributor

9 months ago

GoToAssist Agent Vulnerabilities

Our Microsoft Defender Endpoint reported vulnerabilities in Openssl for the following GoToAssist agent files. I asked GoToAssist support but they don't have an estimated time frame of resolution. Should we find other remote tool?

c:\program files\goto\gotoassist agent desktop console\libssl-3-x64.dll
c:\program files\goto\gotoassist agent desktop console\libcrypto-3-x64.dll

Associated CVEs (Severity): CVE-2023-2650 (High), CVE-2023-4807 (High), CVE-2023-0464 (Medium), CVE-2023-6129 (Medium), CVE-2023-2975 (Medium), CVE-2023-5363 (Medium).

Kaz111
Active Contributor
9 months ago
What version of agent(s) are you on? I have both V4 and V5 installed and I do not have the directory: c:\program files\goto .

On my Win 10 computer, the DLL files you listed are stored at AppData\Local\Programs\LogMeIn\GoToAssist Agent Desktop Console
- IBUS
  Active Contributor
  9 months ago
  Download Windows 64-bit version from https://help.gotoassist.com/remote-support/help/gotoassist-remote-support-agent-desktop-console-beta
  - Kaz111
    Active Contributor
    9 months ago
    Was already on 64-bit version of V5 desktop, version 5.9.1.101
    
    Downloaded from your link and reinstalled 64-bit version. Same version appeared: 5.9.1.101.
    
    None of the two DLL files you listed are located at c:\program files\goto\gotoassist agent desktop console. This directory does not exist on my end. Still located at: AppData\Local\Programs\LogMeIn\GoToAssist Agent Desktop Console

Forum Discussion

GoToAssist Agent Vulnerabilities

Recent Discussions

Installation failing - Can't create working folder

Initial install fails on Windows version 24H2

Reset not working 1712

When Client is on Unattended- how can remote tech be forced to authenticate to client windows?

Client window display issue with new 1712 Version on Macs