Security experts from Cisco Talos have discovered a couple of vulnerabilities in Dell Precision software which allow attackers to disable security mechanisms, escalate privileges and execute arbitrary code within the context of the application user. Tracked as CVE-2016-9038, the first vulnerability impacting Invincea-X, Dell Protected Workspace 6.1.3-24058, because of a device driver being read/write accessible to everyone, which can be triggered by sending specially crafted data to it.

Read full news article on E Hacking News