Communications > Security

Acer puts Active X hole on laptops

Security, it has heard of it

By Nick Farrell

Monday, 8 January 2007, 08:50

LAPTOP OUTFIT Acer seems to have placed an Active X control on its computers that seems to allow webpages to execute any program.

This huge hole in network security has been installed on board Acer lap-tops since 1998.

The exploit was found by Tan Chew Keong who posted details on his bog here. He smelt a rat when he noticed that his Acer TravelMate 4150 notebook contained a LunchApp.APlunch ActiveX control, which is marked as "safe for scripting" and "safe for initialising from persistent data".

Looking at the file he discovered its control is part of the suite of applications that is distributed by default in Acer notebooks. It has apparently been around since November 1998.

Keong has published an exploit which shows how a hacker can use the flaw to run any bit of code they like.

Those who have disabled ActiveX when they upgraded to IE7 can rest easy. µ

Hackers release new attack code for Windows Beware the claws that rend Tuesday, 29 September 2009, 10:34 AM Read more	Turn off Javascript in IE again You probably were not expecting this Tuesday, 24 November 2009, 10:21 AM Read more
Apple fixes flawed Leopard Snow Leopard flawed too Friday, 4 September 2009, 10:35 AM Read more	Acer joins Wimax's Open Patent Alliance Why max? Monday, 11 May 2009, 22:50 PM Read more
Google plugs Chrome hole Critical vulnerability Wednesday, 24 June 2009, 11:53 AM Read more	Chinese Internet censorship is a huge security risk Makes Miss Piggy a porn star Thursday, 11 June 2009, 11:45 AM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Most read
Most commented
Most popular

INQ Whitepapers

Will you be buying a new computer this Christmas?

Yes, a new computer will be under the tree

Yes, a netbook will fit my stocking nicely

No, but will be upgrading some components / building my own

No, my computer works fine if I change the oil often enough

Bah humbug, I'll wait for the January sales to decide

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Acer puts Active X hole on laptops

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Project / Project Manager

Project / Project Manager -...

Read more

Business Development / Sal

Business Development / Sale...

Read more

Web Manager

Title: Web Manager Company:...

Read more

IFS Systems Manager

IFS Systems Manager. IFS Sy...

Read more

Jnr SQL SERVER Developer /

SQL\T-SQL\ PLSQL Database D...

Read more