Security analysis firm SafeBreach Lab has found a vulnerability in Dell’s SupportHelp utility, bundled with tens of thousands and thousands of Dell PCs, which might enable unauthorized native customers or low-privilege apps to take management of a PC.
The challenge is that the SupportHelp app runs with SYSTEM privileges, which permits the app to put in new drivers and different updates for instance, however that it hundreds DLLs from places that are below the management of low privileged customers, that means malicious DLLs might be injected which might enable hackers to do no matter they need.
“According to Dell’s website, SupportAssist is pre-installed on most of Dell devices running Windows. This means that as long as the software is not patched, the vulnerability affects millions of Dell PC users,” the researchers say.
The extent is the difficulty is exacerbated by the truth that the software program is definitely used on greater than Dell PCS, as Dell’s SupportAssis is definitely white-label software program by PC-Doctor, which the corporate says is on greater than 100 million PCs.
Fortunately, PC-Doctor has already issued an replace to handle the issue, with Dell SupportHelp for Business PCs model 2.0.1 and Dell SupportHelp for Home PCs model 3.2.2 however not susceptible.
This is nevertheless not the primary time Dell’s PC administration software program has precipitated a problem, as in April this yr, Dell has a extra severe challenge of a essential distant code execution vulnerability in SupportHelp, which might enable hackers to remotely set up malicious software program in your PC. The episodes recommend customers could also be safer if firms depart PC software program upkeep to Microsoft, who, whereas not good, would at the least take possession of the difficulty.
