´÷¶ûSupportAssist DLL½Ù³Ö·ì϶

°ä²¼¹¦·ò 2019-06-22

²¼¾°ÃèÊö


6ÔÂ21ÈÕ´÷¶û°ä²¼°²È«´«µÝ£¬£¬£¬£¬£¬¶½´ÙÓû§¸üд÷¶ûµçÄÔÉÏԤװÖõÄSupportAssistÈí¼þ£¬£¬£¬£¬£¬ÒÔ½¨¸´DLL½Ù³Ö·ì϶£¨CVE-2019-12280£© ¡£¡£¡£¡£¡£¡£¡£¸Ã·ì϶¿É±»ÓµÓÐͨÀýÓû§È¨Ï޵Ĺ¥»÷ÕßÀûÓ㬣¬£¬£¬£¬Í¨¹ý¶ñÒâDLLÎļþ½øÐÐÌáȨºÍ»ñµÃÓƾÃÐÔ ¡£¡£¡£¡£¡£¡£¡£

·ì϶Áбí


CVE ID  £º   CVE-2019-12280
´÷¶ûDSA±àºÅ£º   DSA-2019-084
·ì϶µÈ¼¶£º   ¸ßΣ
CVSSÆÀ·Ö£º   ÔÝÎÞ
Ó°ÏìÁìÓò£º   Dell SupportAssist for Business PCs°æ±¾2.0£»£» £»£»£»£»£»Dell SupportAssist for Home PCs 3.2.1¼°Ö®Ç°µÄËùÓа汾

·ì϶ÏêÇé


SupportAssistÊÇ´÷¶ûµçÄÔÉÏԤװÖõÄÒ»¸öÈí¼þ£¬£¬£¬£¬£¬ÓÃÓڲ鳭ϵͳӲ¼þºÍÈí¼þµÄÔËÐÐÇé¿ö£¬£¬£¬£¬£¬¸ÃÈí¼þÒÔSYSTEMȨÏÞÔËÐÐ ¡£¡£¡£¡£¡£¡£¡£SafeBreach Labs×êÑÐÈËÔ±·¢ÏÖ¸ÃÈí¼þ´æÔÚDLL½Ù³Ö·ì϶£¨CVE-2019-12280£©£¬£¬£¬£¬£¬ÔÊÐíÔ¶³Ì¹¥»÷Õß½«ËÁÒâδÊðÃûµÄDLL¼ÓÔص½ÒÔSYSTEMȨÏÞÔËÐеķþÎñÖУ¬£¬£¬£¬£¬´Ó¶øʵÏÖȨÏÞÌáÉýºÍÓƾÃÐÔ - Ô̺¬¶ÔÎïÀíÄڴ桢ϵͳÖÎÀíBIOSµÈµ×²ã×é¼þµÄ¶Á/д½Ó¼û ¡£¡£¡£¡£¡£¡£¡£¸Ã·ì϶ʹ¹¥»÷Õß¿ÉÄÜͨ¹ýÒÑÊðÃûµÄ·þÎñ¼ÓÔغÍÖ´ÐжñÒâpayload£¬£¬£¬£¬£¬¹¥»÷Õ߿ɽ«´ËÄÜÁ¦ÓÃÓÚÖ´ÐлòÌӱܼì²âµÈ·ÖÆçÖ÷ÕÅ£¬£¬£¬£¬£¬ÀýÈ磺ÀûÓ÷¨Ê½°×Ãûµ¥Èƹý¡¢ÊðÃûÑéÖ¤Èƹý ¡£¡£¡£¡£¡£¡£¡£


ƾ¾ÝSafeBreachµÄ»ã±¨£¬£¬£¬£¬£¬¸Ã·ì϶µÄµ××ÓÔ­ÒòÊÇ£º


1¡¢²»×㰲ȫµÄDLL¼ÓÔØ ¡£¡£¡£¡£¡£¡£¡£´úÂëÖÐʹÓÃLoadLibraryW²½Ö裬£¬£¬£¬£¬¶ø²»ÊÇLoadLibraryExW£»£» £»£»£»£»£»ÕâÔÊÐíδ¾­ÊÚȨµÄÓû§Í¨¹ýijЩÏóÕ÷À´½ç˵ËÑË÷°¤´Î£¬£¬£¬£¬£¬ÀýÈçLOAD_LIBRARY_SEARCH_DLL_LOAD_DIR ¡£¡£¡£¡£¡£¡£¡£·´¹ýÀ´£¬£¬£¬£¬£¬¸ÃÏóÕ÷ÓÖÏÞÔìÖ»ÔÚ×Ô¼ºµÄÎļþ¼ÐÖÐËÑË÷DLL£¬£¬£¬£¬£¬Ô¤·ÀÁËÔÚPATH±äÁ¿ÖÐËÑË÷DLLµÄÇé¿ö ¡£¡£¡£¡£¡£¡£¡£


2¡¢Ã»ÓжԶþ½øÔìÎļþ½øÐÐÊðÃûÑéÖ¤ ¡£¡£¡£¡£¡£¡£¡£¸Ã·¨Ê½Ã»ÓÐÑéÖ¤Ëü½«¼ÓÔصÄDLLÊÇ·ñÒÑÊðÃû£¬£¬£¬£¬£¬Òò¶øËü½«¼ÓÔØËÁÒâδÊðÃûµÄDLL ¡£¡£¡£¡£¡£¡£¡£


ÓÉÓÚ´÷¶ûSupportAssistʹÓõÄ×é¼þÊÇÓɵÚÈý·½PC-Doctor¿ª·¢ºÍÊØ»¤µÄ£¬£¬£¬£¬£¬Òò¶ø¸Ã·ì϶ҲӰÏìµ½ÒÀÀµPC-DoctorµÄÆäËüPCÔì×÷ÉÌ ¡£¡£¡£¡£¡£¡£¡£SafeBreach LabsÈ·ÈÏÊÜÓ°ÏìµÄ×é¼þÊÇPC-Doctor Toolbox for Windows£¬£¬£¬£¬£¬¸Ã×é¼þ±»ÒÔϹ¤¾ßËùʹÓãº


CORSAIR ONE Diagnostics
CORSAIR Diagnostics
Staples EasyTech Diagnostics
Tobii I-Series Diagnostic Tool
Tobii Dynavox Diagnostic Tool

·ì϶¹¦·òÏߣº


4ÔÂ29ÈÕ - »ã±¨·ì϶
5ÔÂ08ÈÕ - ´÷¶ûÈ·Èϸ÷ì϶
5ÔÂ21ÈÕ - ´÷¶û½«·ì϶·¢Ë͸øPC-Doctor
5ÔÂ22ÈÕ - »ñµÃ±àºÅCVE-2019-12280£¬£¬£¬£¬£¬assign¸øPC-Doctor
5ÔÂ28ÈÕ - ´÷¶û°ä²¼SupportAssist¸üУ¬£¬£¬£¬£¬½¨¸´¸Ã·ì϶
6ÔÂ19ÈÕ - ·ì϶Åû¶

½¨¸´½¨Òé


½¨Òé´÷¶ûÓû§¸üÐÂÖÁÒÔÏ°汾£º


Dell SupportAssist for Business PCs °æ±¾2.0.1
Dell SupportAssist for Home PCs °æ±¾3.2.2

²Î¿¼Á´½Ó


https://www.dell.com/support/article/cn/zh/cndhs1/sln317291/dsa-2019-084-dell-supportassist-for-business-pcs-and-dell-supportassist-for-home-pcs-security-update-for-pc-doctor-vulnerability?lang=en
https://safebreach.com/Post/OEM-Software-Puts-Multiple-Laptops-At-Risk
https://thehackernews.com/2019/06/dells-supportassist-hacking.html