{"id":14677,"date":"2020-06-09T00:18:00","date_gmt":"2020-06-08T22:18:00","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=14677"},"modified":"2024-10-03T07:19:09","modified_gmt":"2024-10-03T05:19:09","slug":"dell-security-advisory-fr-realtek-treiber-schwachstelle","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/06\/09\/dell-security-advisory-fr-realtek-treiber-schwachstelle\/","title":{"rendered":"Dell Security Advisory for Realtek driver vulnerability"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\">[<a href=\"https:\/\/www.borncity.com\/blog\/?p=232451\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]Vendor Dell has now reacted to a DLL hijacking vulnerability CVE-2019-19705 in Realtek audio drivers and published a corresponding security advisory. Here is some information.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/vg04.met.vgwort.de\/na\/d034d3ff4c15470eb0928cd27280caeb\" width=\"1\" height=\"1\">I had reported the problem in February 2020 in the blog post <a href=\"https:\/\/borncity.com\/win\/2020\/02\/06\/realtek-closes-a-dll-hijacking-vulnerability-in-hd-audio-driver\/\">Realtek closes a DLL Hijacking Vulnerability in HD Audio driver<\/a>. There was a DLL hijacking vulnerability in the Realtek HD audio driver package which the manufacturer has closed by an updated. The vulnerability was reported to Realtek on July 10, 2019, and closed with a patch on December 13, 2019. The fix can be found in the Realtek HD Audio driver package ver.8857 or later. Driver versions prior to 8855 created with Microsoft Visual Studio 2005 (VS2005) are still vulnerable to attacks. More details about the CVE-2019-19705 vulnerability are available in the blog post linked above and in <a href=\"https:\/\/web.archive.org\/web\/20201021214752\/https:\/\/safebreach.com\/Post\/Realtek-HD-Audio-Driver-Package-DLL-Preloading-and-Potential-Abuses-CVE-2019-19705\" target=\"_blank\" rel=\"noopener noreferrer\">this SafeBreach Labs article<\/a>.<\/p>\n<blockquote>\n<p>A certain problem is that Realtek did not offer updated drivers on their web pages. Blog reader EP points out in <a href=\"https:\/\/borncity.com\/win\/2020\/02\/06\/realtek-closes-a-dll-hijacking-vulnerability-in-hd-audio-driver\/#comment-8519\" target=\"_blank\" rel=\"noopener noreferrer\">this March 2020 comment<\/a> that there is an ASUS Realtek HDA legacy driver v6.0.8858.1. However, this driver only works with certain ASUS notebooks. <\/p>\n<p>For Lenovo Lenovo ThinkCentre, Realtek HDA legacy drivers version 6.0.8881.1 are available from <a href=\"https:\/\/pcsupport.lenovo.com\/us\/en\/downloads\/DS120702\" target=\"_blank\" rel=\"noopener noreferrer\">this Lenovo site<\/a>.&nbsp; <\/p>\n<\/blockquote>\n<h2>Dell has now also published a Advisory<\/h2>\n<p>In <a href=\"https:\/\/borncity.com\/win\/2020\/02\/06\/realtek-closes-a-dll-hijacking-vulnerability-in-hd-audio-driver\/#comment-11702\" target=\"_blank\" rel=\"noopener noreferrer\">this comment<\/a> blog reader EP announces that Dell has released the <a href=\"https:\/\/www.dell.com\/support\/article\/de-de\/sln321636\/dsa-2020-131-dell-client-platform-security-update-security-advisory-for-realtek-vulnerability?lang=en\" target=\"_blank\" rel=\"noopener noreferrer\">DSA-2020-131: Dell Client Platform Security Update Security Advisory for Realtek Vulnerability<\/a> Security Advisory. Dell clients require a security update to address vulnerabilities that have been fixed in Realtek Audio Driver. Dell provides several Realtek audio drivers to close the vulnerability CVE-2019-19705, which are listed on the Advisory page. The drivers can be downloaded for the device models from Dell's <a href=\"https:\/\/www.dell.com\/support\/home\/?app=drivers\" target=\"_blank\" rel=\"noopener noreferrer\">Drivers and Downloads page<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Vendor Dell has now reacted to a DLL hijacking vulnerability CVE-2019-19705 in Realtek audio drivers and published a corresponding security advisory. Here is some information.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,2],"tags":[69,194],"class_list":["post-14677","post","type-post","status-publish","format-standard","hentry","category-security","category-windows","tag-security","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14677","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=14677"}],"version-history":[{"count":1,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14677\/revisions"}],"predecessor-version":[{"id":35442,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14677\/revisions\/35442"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=14677"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=14677"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=14677"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}