Dell, Toshiba, and Lenovo utilities expose PCs to more attacks

Stop me if you've heard this before: a vulnerability in an OEM software utility leaves systems wide open to attack. This time around, three manufacturers can tell this tale of woe. Lenovo, Dell, and Toshiba all have unpatched vulnerabilities in their various support utilities. These vulnerabilities were discovered by a security researcher who goes by Slipstream, who has posted details online (warning: obnoxious auto-play music) along with proof-of-concept code called OEMDrop.

Three OEMs. Three applications preinstalled. Three ...

Read more...