News Targeted


Category: IT|May 8, 2021 | Author: Admin

Firmware vulnerability affects "millions" of PCs

Share on

Major vulnerabilities have been identified in Dell's firmware update driver that could allow attackers to access core-level code in millions of Dell PCs delivered for more than ten years.

Two years to reach a solution
SentinelLabs reported the vulnerability to Dell in December last year and has posted a detailed blog with all the information. Alex Ionescu from Crowdstike says that it took "three separate companies two years" to get a solution.

SentinelLabs notes that there are five errors in a single CVE (Common Vulnerabilities and Exposures is a reference for publicly known vulnerabilities and exposures) assigned by Dell: Two memory corruption issues, two input validation issues, and one code logic issue that could lead to a DDoS (Denial of Service) attack. The problem lies in the driver ‘dbutil_2_3.sys’ which is used in several firmware update tools for Dell and Alienware systems, including BIOS updates.

Dell has released a security advisory (DSA-2021-088) and made available updated packages for Windows that can be downloaded manually.

Risk minimization is recommended
The company recommends reducing the risk. This includes removing the driver ‘dbutil_2_3.sys’ from the PC and updating the driver manually, or waiting for the updated driver to download automatically. To remove the driver, the company recommends one of two:

  • Option 1 (Recommended): Download and run the Dell Security Advisory Update - DSA-2021-088 Utility.

  • Option 2: Manually remove the vulnerable dbutil_2_3.sys driver:

 

Step A:
Find dbutil_2_3.sys i
C: \ Users \\ AppData \ Local \ Temp
or
C: \ Windows \ Temp

Step B:
Select the file dbutil_2_3.sys, hold down shift and press Del to permanently delete it.

 

No indications of exploitation of the vulnerability
SentinelLabs says that there are no indications that the vulnerabilities have been exploited. Still, they recommend both businesses and consumers to update as it affects "hundreds of millions" of PCs.

Sources: SentinelLabs

Sponsored Ads:

Comments:

Previous article >


Snowden: “DO NOT use Reddit!”

Category: IT|Apr 26, 2024 | Author: Admin

Popular Google app used by millions set to close in a few weeks

Category: Google|Apr 25, 2024 | Author: Admin

Cheeky, YouTube!

Category: Google|Apr 24, 2024 | Author: Admin

This is the date Apple will reveal new iPads

Category: Apple|Apr 23, 2024 | Author: Admin

Only possible with VPN

Category: IT|Apr 22, 2024 | Author: Admin

Apple sidles into sideloading in the EU

Category: Apple|Apr 21, 2024 | Author: Admin

Report: Microsoft-OpenAI ownership might get conditional OK from EU regulators

Category: IT|Apr 20, 2024 | Author: Admin

Giant change at Google could change everything

Category: Google|Apr 19, 2024 | Author: Admin

Now Windows will be bothered about this too

Category: Microsoft|Apr 18, 2024 | Author: Admin

Test the new AI trick with Logitech

Category: IT|Apr 17, 2024 | Author: Admin

The US Government Has a Microsoft Problem

Category: Microsoft|Apr 16, 2024 | Author: Admin

Now comes the commercial

Category: Microsoft|Apr 15, 2024 | Author: Admin

Linux Foundation is leading fight against fauxpen source

Category: IT|Apr 14, 2024 | Author: Admin

3000 news articles!!! Happy reading!

Category: General|Apr 13, 2024 | Author: Admin

Google shuts down new product

Category: IT|Apr 12, 2024 | Author: Admin
more