ASA-2019-00373 – PC-Doctor Toolbox: Uncontrolled Search Path Element


Allele Security Alert

ASA-2019-00373

Identifier(s)

ASA-2019-00373, DSA-2019-084, CVE-2019-12280

Title

Uncontrolled Search Path Element

Vendor(s)

PC-Doctor
Dell

Product(s)

PC-Doctor Toolbox for Windows

Dell SupportAssist for Business
Dell SupportAssist for Home

Affected version(s)

PC-Doctor Toolbox for Windows prior to version 7.3. Also re-branded as:

CORSAIR ONE Diagnostics
CORSAIR Diagnostics
Staples EasyTech Diagnostics
Tobii I-Series Diagnostic Tool
Tobii Dynavox Diagnostic Tool

Dell SupportAssist for Business PCs version 2.0
Dell SupportAssist for Home PCs version 3.2.1 and all prior versions

Fixed version(s)

PC-Doctor Toolbox for Windows version 7.3

Dell SupportAssist for Business PCs version 2.0.1
Dell SupportAssist for Home PCs version 3.2.2

Proof of concept

Unknown

Description

Uncontrolled search path element vulnerability in PC-Doctor Toolbox for Windows prior to version 7.3 allows local users to gain privileges and conduct DLL hijacking attacks via a trojan horse DLL located in an unsecured directory which has been added to the PATH environment variable.

Technical details

Unknown

Credits

Peleg Hadar (SafeBreach)

Reference(s)

OEM Software Puts Multiple Laptops At Risk
https://safebreach.com/Post/OEM-Software-Puts-Multiple-Laptops-At-Risk

DSA-2019-084: Dell SupportAssist for Business PCs and Dell SupportAssist for Home PCs Security Update for PC Doctor Vulnerability
https://www.dell.com/support/article/br/pt/brdhs1/sln317291/dsa-2019-084-dell-supportassist-for-business-pcs-and-dell-supportassist-for-home-pcs-security-update-for-pc-doctor-vulnerability?lang=

PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element
https://seclists.org/fulldisclosure/2019/Jun/29

CVE-2019-12280
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12280

CVE-2019-12280
https://nvd.nist.gov/vuln/detail/CVE-2019-12280

If there is any error in this alert or you wish a comprehensive analysis, let us know.

Last modified: June 23, 2019

We are not responsible for any data loss, device corruption or any other type of issue due to the use of any information mentioned in our security alerts.