Latest in Back door

Image credit:

Energizer confirms software vulnerability in Duo charging software

Share
Tweet
Share
Save

Sponsored Links

Energizer's Duo USB battery charger has been around for a couple of years now, but the company has just now fessed up to a fairly significant vulnerability in the software for the device after being informed of the problem by CERT. While the software was intended to simply let you keep watch on the battery charging status, it apparently also opened up a backdoor that allowed commands to be executed remotely, including the ability to list directories, send and receive files, and run programs. That vulnerability is only found in the Windows version of the software, and Energizer has already discontinued the product altogether and removed the download from its website. Anyone that already has the software installed is advised to first uninstall it and then remove the Arucer.dll file from the Windows system32 directory.

[Thanks, Michael]

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Share
Tweet
Share
Save

Popular on Engadget

Porsche Taycan Turbo's EPA range of 201 miles is much lower than expected

Porsche Taycan Turbo's EPA range of 201 miles is much lower than expected

View
Netflix is giving Line's cute mascots their own animated series

Netflix is giving Line's cute mascots their own animated series

View
'Forza Horizon 4' is getting a 72-car battle royale mode

'Forza Horizon 4' is getting a 72-car battle royale mode

View
What's coming to Netflix in January: hello 'Sabrina,' goodbye 'Friends'

What's coming to Netflix in January: hello 'Sabrina,' goodbye 'Friends'

View
The Game Awards will run a 48-hour demo 'festival'

The Game Awards will run a 48-hour demo 'festival'

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr