A warning to owners of Acer laptops

According to a recent research, all Acer laptops manufactured from 1998 to 2006 have a security flaw that allows attackers to gain unauthorized access to the system and control it remotely via the Internet.

A vulnerability was found in proprietary ActiveX control shipped with all Acer laptops. That control can be used by company support for troubleshooting of certain system problems occurred on remote client’s computer. However, hackers have found a way of using it too.

lunchapp.ocx, that’s the control’s name, is accessible from the Internet while surfing with Internet Explorer. A specially crafted malicious code hosted on attacker’s web site can run the vulnerable control without asking for user permission or even notifying him. All the attacker has to do is to lure the user to his site.

Users surfing the web with alternative web browsers such as Mozilla Firefox or Opera cannot be affected, as these browsers do not support ActiveX, a Microsoft’s technology. Internet Explorer 7, unlike previous browser versions, won’t run the control silently. It will ask the user first. However, as the control’s name is legit, many users can allow it.

Currently, no patch exists. The best way to protect yourself is disabling launchapp.ocx or even removing it from the system. The latter is not recommended, though.

To disable the control click Start > Run… and type in regsvr32 -u launchapp.ocx

To see if your system is vulnerable, use the Windows Search tool to search for the launchapp.ocx file.







Your opinion regarding A warning to owners of Acer laptops

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter, please unsubscribe here.
Ask us
Encyclopedia of parasites:
Library of files:
Tags:
Your main spyware remover is:
Spyware Doctor
Windows Defender
Spy Sweeper
AVG Anti-Spyware
SUPERAntiSpyware
Spybot - S&D
SpyHunter
Other program
I have two or more programs
I don't need no anti-spyware