Beware: HP Support Assistant found vulnerable to DLL hijacking privilege escalat...
source link: https://www.neowin.net/news/beware-hp-support-assistant-found-vulnerable-to-dll-hijacking-privilege-escalation/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Beware: HP Support Assistant found vulnerable to DLL hijacking privilege escalation
The HP Support Assistant is a useful software utility provided by HP so that users can download and install necessary firmware and software, check performance related metrics, run some basic troubleshooting, among other things. However, the technology giant has warned that it found a security vulnerability in the application which could lead to privilege escalation using the DLL hijacking method. HP has assigned high severity rating for the new flaw with a CVSS v3.1 base score of 8.2.
The problem is precisely present in its Performance Tune-up diagnostic tool. In its security bulletin, HP explains the issue:
Privilege escalation in HP Support Assistant
HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance Tune-up.
HP has also listed the vulnerable software versions that are to be avoided:
HP Support Assistant versions earlier than 9.11
Fusion versions earlier than 1.38.2601.0
Hence, HP PC owners are advised to download and install the HP Support Assistant version 9.11 from the company's official website here.
Recommend
-
51
Recently I’ve been reading a tech site on my iOS device when a new tab opened and went into the background - something I’ve seen before caused by rogue ads that are fetched via normal means (e.g. embedded in a legit page), so my next steps were...
-
47
针对加密货币的Clipboard Hijacking软件(CryptoCurrency Clipboard Hijackers)是一款利用Windows复制粘贴功能,将受害者加密货币钱包地址替换更改为攻击者地址的恶意劫持软件。虽然这款软件早已出现,但是,最近有网站发现,该劫持软件...
-
69
BGP prefix hijacking is a persistent threat against Internet organizations, attributed to a lack of authorization and authentication mechanisms in the inter-domain routing system. In
-
10
CVE-2019-1378: Exploiting an Access Control Privilege Escalation Vulnerability in Windows 10 Update Assistant (WUA) Introduction Windows 10 is an incredibly feature rich Operating System (OS). ...
-
10
TL;DR Intel Driver & Support Assistant (DSA) is a driver and software update utility for Intel components. DSA version 20.8.30.6 (and likely prior) is vulnerable to a local privilege escalation reparse point b...
-
8
Dozens of high-traffic websites vulnerable to ‘account pre-hijacking’, study finds Ben Dickson...
-
10
Beware: Almost all AMD Ryzen chips found vulnerable to side-channel SQUIP attacks...
-
10
Beware: Tech support scammers are out to get you using Microsoft-branded USB drives...
-
9
Beware: Microsoft Edge found serving malicious tech support scam ads...
-
4
News Government ups cyber support for elderly, vulnerable web users DCMS announces a fund...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK