Security Vulnerabilities fixed in Dell SupportAssist DSA-2019-088
Description
Dell SupportAssist, Dell SupportAssist for PCs, Dell SupportAssist for Home PCs versions 2.2.0 to 2.2.3, 3.0.0 to 3.0.2, 3.1.0, 3.2.0 to 3.2.1, also in Dell SupportAssist for Business PCs version 2.0.0 contain an improper privilege management vulnerability. A malicious local user can exploit this vulnerability by inheriting a system thread using a leaked thread handle to gain system privileges on the affected machine.
Affected Applications
Dell SupportAssist for Home PCs
Dell SupportAisst for Business PCs