News Targeted


Category: IT|May 8, 2021 | Author: Admin

Firmware vulnerability affects "millions" of PCs

Share on

Major vulnerabilities have been identified in Dell's firmware update driver that could allow attackers to access core-level code in millions of Dell PCs delivered for more than ten years.

Two years to reach a solution
SentinelLabs reported the vulnerability to Dell in December last year and has posted a detailed blog with all the information. Alex Ionescu from Crowdstike says that it took "three separate companies two years" to get a solution.

SentinelLabs notes that there are five errors in a single CVE (Common Vulnerabilities and Exposures is a reference for publicly known vulnerabilities and exposures) assigned by Dell: Two memory corruption issues, two input validation issues, and one code logic issue that could lead to a DDoS (Denial of Service) attack. The problem lies in the driver ‘dbutil_2_3.sys’ which is used in several firmware update tools for Dell and Alienware systems, including BIOS updates.

Dell has released a security advisory (DSA-2021-088) and made available updated packages for Windows that can be downloaded manually.

Risk minimization is recommended
The company recommends reducing the risk. This includes removing the driver ‘dbutil_2_3.sys’ from the PC and updating the driver manually, or waiting for the updated driver to download automatically. To remove the driver, the company recommends one of two:

  • Option 1 (Recommended): Download and run the Dell Security Advisory Update - DSA-2021-088 Utility.

  • Option 2: Manually remove the vulnerable dbutil_2_3.sys driver:

 

Step A:
Find dbutil_2_3.sys i
C: \ Users \\ AppData \ Local \ Temp
or
C: \ Windows \ Temp

Step B:
Select the file dbutil_2_3.sys, hold down shift and press Del to permanently delete it.

 

No indications of exploitation of the vulnerability
SentinelLabs says that there are no indications that the vulnerabilities have been exploited. Still, they recommend both businesses and consumers to update as it affects "hundreds of millions" of PCs.

Sources: SentinelLabs

Sponsored Ads:

Comments:

Previous article >


That's why they dropped their own app

Category: IT|Jul 26, 2024 | Author: Admin

Microsoft Backtracks: Office 365 Connector retirement delayed after developer outcry

Category: Microsoft|Jul 25, 2024 | Author: Admin

How to remove Samsung's new lock

Category: General|Jul 24, 2024 | Author: Admin

Intel: “We have found the bug”

Category: IT|Jul 23, 2024 | Author: Admin

Microsoft blames EU for Windows not being secure

Category: Microsoft|Jul 22, 2024 | Author: Admin

Chip stocks volatile with China-US spat in focus

Category: IT|Jul 21, 2024 | Author: Admin

OpenAI unveils cheaper small AI model GPT-4o mini

Category: IT|Jul 20, 2024 | Author: Admin

“iPhone 15” is struggling

Category: Apple|Jul 19, 2024 | Author: Admin

A new era for mobiles

Category: Google|Jul 18, 2024 | Author: Admin

Has opened for credit card trading of Bitcoin

Category: IT|Jul 17, 2024 | Author: Admin

Now everyone can test the new from Apple!

Category: Apple|Jul 16, 2024 | Author: Admin

Google reportedly is close to buying cybersecurity company Wiz for $23 billion

Category: Google|Jul 15, 2024 | Author: Admin

OpenAI whistleblowers ask SEC to investigate alleged restrictive non-disclosure agreements

Category: IT|Jul 14, 2024 | Author: Admin

Norwegian Vivaldi reaches out to Google

Category: IT|Jul 13, 2024 | Author: Admin

Soon, Apple fans may flee Google, and the other way around

Category: IT|Jul 12, 2024 | Author: Admin
more