meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Friday, June 21st 2019

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News

4.9754 Ratings

🗓️ 21 June 2019

⏱️ 15 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Dell Support Assistant Update; Cisco RVxxxW RCE Vuln; STI Research: Biometrics @sans_edu #dell #cisco #biometrics

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Friday, June 21st, 2019 edition of the Sandsenet Storm Center's Stormcast.

0:07.7

My name is Johannes Ulrich, and I'm recording from Washington, D.C.

0:13.2

Dell Today released a security bulletin for its support assist software.

0:18.5

The vulnerable component that's actually being updated here is PC Doctor.

0:24.4

Now, the vulnerability is probably one of the less severe vulnerabilities. I've seen in tools like this.

0:30.9

It's really just an untrusted DLL loading library. So if an attacker is able to place a DL on a system running support assistant,

0:43.0

then support assistant may load that DL and execute code included in it. What makes this, of

0:50.4

course, a bit more problematic is that Support Assist does have system access

0:56.0

and well is pretty much running unrestricted because it does have to have access to pretty much everything in the system.

1:04.0

The home version of the software should update automatically if you do run the business version, then you may have to apply

1:14.7

the patch manually. The scope of this problem may actually go beyond Dell in this particular

1:22.2

case. The researcher who found this vulnerability and reported to Dell Pelik Harder says that a PC doctor may also be included with PCs from other manufacturers.

1:36.3

And we can only hope that a PC doctor, the same company actually also makes the entire support assist package is applying these patches to

1:46.5

versions that they are delivering to other computer makers. Of course, for many of the listeners

1:54.6

here, it's probably standard practice to wipe a new PC and install the operating system from scratch.

2:02.6

Not 100% sure what exactly lose if you are removing support assist,

2:07.6

but often it does hurt you if you are then calling support

2:12.6

and they're asking for a particular troubleshooting or diagnostic report from that software.

2:20.9

And Cisco has been somewhat on a role for the last two days.

2:24.4

They released a total of 26 different updates.

2:29.5

If I counted them right, three of them are rated as critical. The one that concerns me the most is

2:37.2

remote command execution vulnerability in the RV 110W, RV130W and RV-215W routers.

...

Please login to see the full transcript.

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2026.