A reasonably uncommon vulnerability in Razer mice has been recognized and the corporate is at present engaged on a repair. Over the weekend, safety researcher Jon Hat posted on Twitter that after plugging in a Razer mouse or dongle, Windows Update will obtain the Razer installer executable and run it with SYSTEM privileges. It additionally enables you to entry the Windows file explorer and Powershell with “elevated” privileges — which basically means somebody with bodily entry to the pc may set up dangerous software program.
Since this vulnerability requires direct, bodily entry to a pc, it is not almost as harmful as a safety subject that may be carried out remotely, but it surely’s nonetheless a troubling discover. Hat mentioned on Twitter that Razer finally reached out and instructed him that the corporate’s safety crew was engaged on a repair. We’ve reached out to Razer as nicely to confirm these particulars and can replace this story if we hear something, together with when customers may anticipate the difficulty to be fastened. We’re additionally hoping to seek out out what particular Razer mice may cause the difficulty.
All merchandise advisable by Engadget are chosen by our editorial crew, unbiased of our father or mother firm. Some of our tales embrace affiliate hyperlinks. If you purchase one thing by one among these hyperlinks, we might earn an affiliate fee.
#Razer #fixing #Windows #safety #flaw #brought about #mice #Engadget
