// Security NEWS // A Critical Flaw in a Software Supporting Tens of Millions of PCs

A vulnerability in a PC-Doctor product allows you to take control of a machine. This software is distributed on Dell PCs under the name "SupportAssist". Fortunately, a patch is available.

Source

If you have a Dell PC, update it immediately. A SafeBreach security researcher has found a critical flaw in the Dell SupportAssist support software that allows malware to take full control of the machine.

Indeed, one of the software components of this product does not securely load DLLs, does not specify a limit on the loading path and does not verify any signatures. An attacker can therefore quite easily introduce a poxed DLL and have it executed with system privileges.

Dell has already published a patch that needs to be installed. This flaw concerns both consumer and professional PCs. However, the American manufacturer is not the only one affected by this case.

Dell SupportAssist is actually a repackaging of the PC-Doctor solution. Those who use PC-Doctor Toolbox for Windows are therefore also concerned by this problem. According to PC-Doctor, this represents more than 100 million PCs worldwide.

Other vulnerable OEM solutions are in circulation, such as Corsair One Diagnostics, Corsair Diagnostics, Staples EasyTech Diagnostics, Tobii ISeries Diagnostic Tool and Tobii Dynavox Diagnostic Tool.

Credit: Dell would like to thank Peleg Hadar for reporting this vulnerability.

Severity Rating: For an explanation of Severity Ratings, refer to Dell’s Vulnerability Disclosure Policy. Dell EMC recommends all customers take into account both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability.

Sources : SafeBreach and Dell

Stay Informed, Stay Safe

• I've made a lot of articles with tools, explanations and advises to show you how to protect your privacy and to secure your computer, GO check them out!

  • This is my guide To Secure your PC after a fresh installation of Windows

  • If you think that your Phone or your PC has been hacked, you have to check it right now!

  • That's how you can be more Anonymous on the internet!

  • The Future of Cyber-Security, what to expect?

  • The best Crypto debit card – Wirex!

  • These are the best VPN to protect your numeric life: NordVPN, ExpressVPN and CyberGhost!

  • Your PC is slow? That's why!

  • Why is it important to Be Discreet on the Internet

  • The 4 security measures to put in place on your WIFI router

  • The Security guide everyone must have on holidays!

  • Feel hot? Your Computer also!

  • How an Adware works?

  • That's how you should guard against Trojan!

  • Why Antiviruses are not your friend?!

  • Basics tools to protect your Privacy and your Computer

  • What are the different Types of hackers?