Dell PCs vulnerable to remote takeover due to SupportAssist vulnerability

Posted on Friday, May 03 2019 @ 10:30 CEST by Thomas De Maesschalck
Bill Demirkapi, a 17-year old US-based security researcher, discovered a vulnerability in Dell's SupportAssistant utility. This tool is pre-installed on Dell laptops and PCs and can allow attackers to remotely takeover these systems. All that's needed is to trick the user into visiting a website with malicious JavaScript code, no further user action is required:
The attack relies on luring users on a malicious web page, where JavaScript code can trick the Dell SupportAssist tool into downloading and running files from an attacker-controlled location.

Because the Dell SupportAssist tool runs as admin, attackers will have full access to targeted systems, if they manage to get themselves in the proper position to execute this attack.
Dell issued an update for SupportAssist on April 23.

About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.

Loading Comments