您现在的位置是:知識 >>正文
【】
知識91人已围观
简介If you own a Dell laptop or desktop then there's a very good chance your machine is vulnerable to at ...
If you own a Dell laptop or desktop then there's a very good chance your machine is vulnerable to attack simply by visiting a malicious website. The good news is, Dell has released a patch to close the security hole.
As ZDNet reports, 17-year-old security researcher Bill Demirkapi discovered a vulnerability (CVE-2019-3719) in the Dell SupportAssist utility which allows an attacker to remote execute code. This is achieved by getting a user to visit a specific website containing JavaScript code capable of tricking the SupportAssist app into downloading and running malicious files (with full admin rights). Importantly, no user interaction is required once the website has been visited and the JavaScript can be hidden inside an ad on a legitimate website.
Here's the remote code execution in action as recorded by Demirkapi:
Dell uses SupportAssist to pro-actively check the health of your hardware and software and then automatically updates each system as necessary. As you've probably guessed, it's a piece of software that gets pre-installed on most new Dell systems, meaning there's a lot of users out there potentially vulnerable to this attack.

Dell has known about the vulnerability since Oct. 26 last year and a patched version of SupportAssist (v3.2.0.90) is now available which closes the security hole. If you own a Dell which has SupportAssist installed, download and install the new version as soon as possible to protect your system.
Featured Video For You
Scientists successfully 3D-print heart from human cells
TopicsCybersecurityDell
Tags:
转载:欢迎各位朋友分享到网络,但转载请说明文章出处“夫榮妻貴網”。http://new.maomao321.com/news/71f3799891.html
相关文章
Katy Perry talks 'Rise,' her next batch of songs, and how to survive Twitter
知識Katy Perry recently surpassed 90 million followers on Twitter, making her the person with the most f ...
【知識】
阅读更多德轉朱藝:26歲北京國安球員楊帆租借加盟天津津門虎
知識德轉朱藝:26歲北京國安球員楊帆租借加盟天津津門虎_北京國安隊_鹽城_個人www.ty42.com 日期:2022-04-26 17:31:00| 評論(已有342576條評論) ...
【知識】
阅读更多西媒 :巴薩與萊萬接近達協議 拜仁談續約為時已晚
知識西媒:巴薩與萊萬接近達協議 拜仁談續約為時已晚_哈維_球員_拉波爾塔www.ty42.com 日期:2022-04-28 17:01:00| 評論(已有342783條評論) ...
【知識】
阅读更多