Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Computer Help and Support

douglas9

(4,553 posts) Sat Jun 22, 2019, 08:46 AM Jun 2019

Millions of Dell PCs Vulnerable to Flaw in Third-Party Component [View all]

Millions of PCs made by Dell and other OEMs are vulnerable to a flaw stemming from a component in pre-installed SupportAssist software. The flaw could enable a remote attacker to completely takeover affected devices.

The high-severity vulnerability (CVE-2019-12280) stems from a component in SupportAssist, a proactive monitoring software pre-installed on PCs with automatic failure detection and notifications for Dell devices. That component is made by a company called PC-Doctor, which develops hardware-diagnostic software for various PC and laptop original equipment manufacturers (OEMs).

“According to Dell’s website, SupportAssist is preinstalled on most of Dell devices running Windows, which means that as long as the software is not patched, this vulnerability probably affects many Dell users,” Peleg Hadar, security researcher with SafeBreach Labs – who discovered the breach – said in a Friday analysis.

https://threatpost.com/millions-of-dell-pcs-vulnerable-to-flaw-in-third-party-component/145833/

2 replies

= new reply since forum marked as read

Highlight:

Millions of Dell PCs Vulnerable to Flaw in Third-Party Component [View all] douglas9 Jun 2019 OP

Not just Dell. This flaw may be in hundreds of millions of PCs. Eugene Jun 2019 #1

Concerned windows users do this: Brainfodder Jun 2019 #2