ads

Monday, May 16, 2016

Lenovo Solution Center: new security hole, fix released

The software pre-installed on Lenovo PCs back in the spotlight because of a new security hole that exposed at risk many business and consumer PC manufacturer. The vulnerability allows the one who brings out the attack to exploit the Lenovo Solution Center software to run arbitrary code, provided you have access to the local network. The new vulnerability was already corrected by the company.

The installed base of machines exposed to the risk is significant, given that Lenovo Solution Center is preloaded on Windows 7 PC and 8 (32 and 64 bit), including the models of the ThinkPad series, the ThinkPad Tablet, ThinkPadCentre, ThinkStation, IdeaCentre and some models of the IdeaPad line.

Lenovo Solution Center is basically a hub for monitoring the status and safety of the system which, ironically, has itself become a security threat for the second time in six months (to December Lenovo had corrected another serious flaw He was interested in the software).

Reporting on the existence of the bug was spread through informative blog Threatpost of Karsperky Lab at the end of last week, but the company was aware of the existence of the bug for several days. Lenovo, as anticipated at the beginning, said they had already corrected the vulnerability of LSC with an update released on April 26.

In line with best practices in the industry, Lenovo has moved quickly to prepare a correction and April 26 has updated its security bulletin disclosing the existence of this additional vulnerability and the availability of a fix that corrects

To avoid any potential risk is therefore useful to verify that you have installed the latest version of the software (3.3.002 at the time) by downloading it from the Lenovo official website (further information at this address). Appreciated the quick service of the company that put out the bud media cases such as that linked to Sailfish (a serious security hole identified at the beginning of 2015 in a software pre-installed by the company in its PC).
at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Apple Vision Pro: Day One

It’s Friday, February 2, 2024. Today is the day. You’ve been eyeing the Vision Pro since Tim Cook stepped onstage with the product at last y...

  • RIP to FTX?
    Image Credits: TechCrunch We had to talk about the news that rocked the crypto world this week in our  Thursday episode :  the Binance/...
  • Fintechs go shopping
    Welcome back to The Interchange, where we take a look at the hottest fintech news of the previous week. If you want to receive The Interchan...
  • Max Q: Galactic
    Hello and welcome back to Max Q! Happy Memorial Day everyone. In this issue: Astranis’ novel approach to GEO satellites Virgin Galactic’...