Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Dell Client Platform 'dbutil Driver' Insufficient Access Control Vulnerability (DSA-2021-088)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The Dell Client Platform 'dbutil Driver' is prone to an access control vulnerability.
Insight
Insight
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
Detection Method
Detection Method
Checks via WMI if the vulnerable dbutil_2_3.sys file exists on the target system. If a file was found, checks via PowerShell, if the sha256 file hash is matching the hash of the known vulnerable driver.
Solution
Solution
Remove the vulnerable dbutil_2_3.sys file from the target. Alternatively apply the updates provided by the vendor in the linked references. Please see the references for more details.