Dell has a security patch out for a wide range of computers they’ve manufactured from 2009 and until now. This patch is addressing a flaw that allows access to full kernel-level Windows permissions. Thus far, Dell has reported that there is no evidence this flaw has been exploited in the wild. Additionally, the attacker must have direct access to the computer to take advantage.

However, it’s rather a simple fix to patch. You will be able to automatically receive the updated firmware by using the Dell Support Assist program for your machine. Otherwise, you can run this utility.

Alternatively, you can manually remove the vulnerable driver by:

Step A: Check the following locations for the dbutil_2_3.sys driver file

  • C:\Users\<username>\AppData\Local\Temp
  • C:\Windows\Temp

Step B: Select the dbutil_2_3.sys file and hold down the SHIFT key while pressing the DELETE key to permanently delete.

Here’s Dell’s KB article about this driver vulnerability, and here’s a list from Dell on the affected computers.

If you need help addressing this vulnerability at your organization, we can help. Send us an email at info@mirazon.com or call 502-240-0404!