Category: IT|May 8, 2021 | Author: Admin

Firmware vulnerability affects "millions" of PCs

Share on

Major vulnerabilities have been identified in Dell's firmware update driver that could allow attackers to access core-level code in millions of Dell PCs delivered for more than ten years.

Two years to reach a solution
SentinelLabs reported the vulnerability to Dell in December last year and has posted a detailed blog with all the information. Alex Ionescu from Crowdstike says that it took "three separate companies two years" to get a solution.

SentinelLabs notes that there are five errors in a single CVE (Common Vulnerabilities and Exposures is a reference for publicly known vulnerabilities and exposures) assigned by Dell: Two memory corruption issues, two input validation issues, and one code logic issue that could lead to a DDoS (Denial of Service) attack. The problem lies in the driver ‘dbutil_2_3.sys’ which is used in several firmware update tools for Dell and Alienware systems, including BIOS updates.

Dell has released a security advisory (DSA-2021-088) and made available updated packages for Windows that can be downloaded manually.

Risk minimization is recommended
The company recommends reducing the risk. This includes removing the driver ‘dbutil_2_3.sys’ from the PC and updating the driver manually, or waiting for the updated driver to download automatically. To remove the driver, the company recommends one of two:

  • Option 1 (Recommended): Download and run the Dell Security Advisory Update - DSA-2021-088 Utility.

  • Option 2: Manually remove the vulnerable dbutil_2_3.sys driver:

 

Step A:
Find dbutil_2_3.sys i
C: \ Users \\ AppData \ Local \ Temp
or
C: \ Windows \ Temp

Step B:
Select the file dbutil_2_3.sys, hold down shift and press Del to permanently delete it.

 

No indications of exploitation of the vulnerability
SentinelLabs says that there are no indications that the vulnerabilities have been exploited. Still, they recommend both businesses and consumers to update as it affects "hundreds of millions" of PCs.

Sources: SentinelLabs

Sponsored Ads:

Comments:


Just Don't Ask Nintendo About 'Switch 2'

Category: General|Jun 17, 2024 | Author: Admin

Adobe to adapt terms of service on gen AI training after customer backlash

Category: IT|Jun 16, 2024 | Author: Admin

Microsoft delivers a light Patch Tuesday for June

Category: Microsoft|Jun 15, 2024 | Author: Admin

Ending Android after 14 years

Category: Google|Jun 14, 2024 | Author: Admin

Apple pays nothing

Category: Apple|Jun 13, 2024 | Author: Admin

Netgear WNR614 flaws allow device takeover, no fix available

Category: IT|Jun 12, 2024 | Author: Admin

Malicious VSCode extensions with millions of installs discovered

Category: Microsoft|Jun 11, 2024 | Author: Admin

Brave says May 2024 was its biggest growth month ever

Category: IT|Jun 10, 2024 | Author: Admin

The speedometer can disappear - now in crisis Volvo is updating over 70,000 cars

Category: IT|Jun 9, 2024 | Author: Admin

LastPass says 12-hour outage caused by bad Chrome extension update

Category: IT|Jun 8, 2024 | Author: Admin

Netflix is ‚Äč‚Äčtesting big changes

Category: General|Jun 7, 2024 | Author: Admin

Launcher for macOS and Linux

Category: IT|Jun 6, 2024 | Author: Admin

“Microsoft tracks children”

Category: Microsoft|Jun 5, 2024 | Author: Admin

Microsoft Edge reaches its all-time new high of 13.14% in the desktop browser market

Category: IT|Jun 4, 2024 | Author: Admin

Google warns Chrome users: Adblock may disappear

Category: Google|Jun 3, 2024 | Author: Admin
more