Serious flaw hits the giant Dell. Guilty of the affair is a driver that could seriously jeopardize the security of several PCs
It is Dell to publish the news, through a press release. On the official press release we can read the following words;
The vulnerability exists in the dbutil_2_3.sys driver. This offending driver present may have been installed on Dell’s Windows operating system when using firmware update packages, via Dell Command Update, Dell Update, Alienware Update, Dell System Inventory Agent, or Dell Platform Tags, even when using a any Dell notification solution to update system drivers, BIOS or firmware
Main problem with this flaw is that it could allow the attacker of the victim machine to gain privileges higher user regardless of the type of account. Here are all the details.
A major driver flaw affects several Dell systems
But how does this flaw happen? For a long time Windows faces a big problem, the tied one you have pre-installed software components from PC manufacturers. These software, however comfortable they may be in terms of notifications, often hide significant problems, precisely because can access the full resources of the system.
It would be enough to type the string at the command prompt whoami / priv, to run into the flaw. More dangerous the situation is what happens without the user’s consent. As it could act at the kernel level of the affected machine. To discover the flaw the researchers of SentinelOne, which report the news in a long report accessible via the link at the beginning of the article.
The offending driver, called DBUtil, has been distributed by the manufacturer on millions of machines in the last 12 years. a system often exploited by users to update the BIOS / UEFI. The American giant has not yet revoked the digital certificate associated with the driver. The risk is clearly that it could still be exploited, although there is good news on the horizon at the moment the attack cannot be exploited remotely.
If you want to continue to know the latest news from the hardware world, keep following us. Greetings from TechGameWorld.com.