Vulnerability Note VU#912156
Dell BIOS in some Latitude laptops and Precision Mobile Workstations vulnerable to buffer overflow
Dell BIOS in some older Latitude laptops and Precision Mobile Workstations are vulnerable to buffer overflows (CWE-119), which can bypass the signed BIOS enforcement standard.
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
Dell BIOS in some older Latitude laptops and Precision Mobile Workstations is vulnerable to buffer overflows in the rbu_packet.pktNum and rbu_packet.pktSize values. These values can be set by an attacker while performing an illegitimate BIOS update. The BIOS reads these values when reconstructing the BIOS image, before any signature check occurs.
By convincing a user with root or administrative privileges to execute a malicious BIOS update, an attacker can bypass the signed BIOS enforcement to install an arbitrary BIOS image that could contain a rootkit or malicious code that persists across operating system re-installations and official BIOS updates.
Apply an Update
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Dell Computer Corporation, Inc.||Affected||11 Jul 2013||22 Aug 2013|
CVSS Metrics (Learn More)
Thanks to Corey Kallenberg, John Butterworth, and Xeno Kovah of the MITRE Corporation for reporting this vulnerability. Thanks also to Rick Martinez from Dell.
This document was written by Adam Rauf.
- CVE IDs: CVE-2013-3582
- Date Public: 15 Aug 2013
- Date First Published: 15 Aug 2013
- Date Last Updated: 22 Aug 2013
- Document Revision: 54
If you have feedback, comments, or additional information about this vulnerability, please send us email.