A major driver flaw affects several Dell systems

Posted by Marco Dellapina
Last Updated:May 7, 2021

Serious flaw hits the giant Dell. Guilty of the affair is a driver that could seriously jeopardize the security of several PCs

It is Dell to publish the news, through a press release. On the official press release we can read the following words;

The vulnerability exists in the dbutil_2_3.sys driver. This offending driver present may have been installed on Dell’s Windows operating system when using firmware update packages, via Dell Command Update, Dell Update, Alienware Update, Dell System Inventory Agent, or Dell Platform Tags, even when using a any Dell notification solution to update system drivers, BIOS or firmware

Main problem with this flaw is that it could allow the attacker of the victim machine to gain privileges higher user regardless of the type of account. Here are all the details.

A major driver flaw affects several Dell systems

A major driver flaw affects several Dell systems

But how does this flaw happen? For a long time Windows faces a big problem, the tied one you have pre-installed software components from PC manufacturers. These software, however comfortable they may be in terms of notifications, often hide significant problems, precisely because can access the full resources of the system.

It would be enough to type the string at the command prompt whoami / priv, to run into the flaw. More dangerous the situation is what happens without the user’s consent. As it could act at the kernel level of the affected machine. To discover the flaw the researchers of SentinelOne, which report the news in a long report accessible via the link at the beginning of the article.

A major driver flaw affects several Dell systems

The offending driver, called DBUtil, has been distributed by the manufacturer on millions of machines in the last 12 years. a system often exploited by users to update the BIOS / UEFI. The American giant has not yet revoked the digital certificate associated with the driver. The risk is clearly that it could still be exploited, although there is good news on the horizon at the moment the attack cannot be exploited remotely.

If you want to continue to know the latest news from the hardware world, keep following us. Greetings from TechGameWorld.com.

Marco Dellapina
View More Posts
Marco Dellapina is a passionate writer who dives into the exciting world of video games. With a deep love for gaming, Marco brings you the latest updates, reviews, and insights on the ever-evolving landscape of interactive entertainment. Join Marco on an immersive journey through the realm of video games and stay up-to-date with the latest trends and releases. Get ready to level up your gaming knowledge with Marco Dellapina's articles.