【】

If you own a Dell laptop or desktop then there's a very good chance your machine is vulnerable to attack simply by visiting a malicious website. The good news is, Dell has released a patch to close the security hole.
As ZDNet reports, 17-year-old security researcher Bill Demirkapi discovered a vulnerability (CVE-2019-3719) in the Dell SupportAssist utility which allows an attacker to remote execute code. This is achieved by getting a user to visit a specific website containing JavaScript code capable of tricking the SupportAssist app into downloading and running malicious files (with full admin rights). Importantly, no user interaction is required once the website has been visited and the JavaScript can be hidden inside an ad on a legitimate website.
Here's the remote code execution in action as recorded by Demirkapi:
Dell uses SupportAssist to pro-actively check the health of your hardware and software and then automatically updates each system as necessary. As you've probably guessed, it's a piece of software that gets pre-installed on most new Dell systems, meaning there's a lot of users out there potentially vulnerable to this attack.

Dell has known about the vulnerability since Oct. 26 last year and a patched version of SupportAssist (v3.2.0.90) is now available which closes the security hole. If you own a Dell which has SupportAssist installed, download and install the new version as soon as possible to protect your system.
Featured Video For You
Scientists successfully 3D-print heart from human cells
TopicsCybersecurityDell
相关文章
Mom discovers security cameras hacked, kids' bedroom livestreamed
A mother in Houston, Texas woke up one morning to pretty much every parent's worst-case scenario. 。 "2025-05-06- 名記 :C羅專注於曼聯 他的經紀人沒和任何球隊談轉會_羅馬諾_門德斯_歐冠www.ty42.com 日期:2022-01-14 11:02:00| 評論(已有325474條評論)2025-05-06
- 梅西INS粉絲數突破3億 僅次於C羅和INS官方賬號_詹娜_凱莉_球星www.ty42.com 日期:2022-01-13 14:01:00| 評論(已有325309條評論)2025-05-06
- 記者 :沒必要唱衰大連足球 唯一希望王老板能妥善安置_萬達_管理層_政策www.ty42.com 日期:2022-01-13 08:31:00| 評論(已有325214條評論)2025-05-06
Katy Perry talks 'Rise,' her next batch of songs, and how to survive Twitter
Katy Perry recently surpassed 90 million followers on Twitter, making her the person with the most f2025-05-06- 官方 :35歲納尼重返歐洲足壇 和威尼斯簽約一年半_澳大利亞再次取消德約科維奇簽證_曼聯_歐冠www.ty42.com 日期:2022-01-15 09:01:00| 評論(已有325639條評論)2025-05-06
最新评论