Dude, Get a Security Update for Your Dell PC

Do you still own tech from 2009 or thereabouts? Maybe an old CPU or motherboard that’s sitting in a box in your closet “just in case” you need a backup? What about a Dell? If you or someone you care about happens to still be using a Dell computer produced any time between when Barack Obama started his first term and now, you should check to make sure you don’t need an important security update that just dropped.

The update fixes a vulnerability with the dbutil_2_3.sys Windows driver, which Dells says, “may have been installed on your Dell Windows operating system when you used firmware update utility packages, Dell Command Update, Dell Update, Alienware Update, Dell System Inventory Agent, or Dell Platform Tags, including when using any Dell notification solution to update drivers, BIOS, or firmware for your system.”

You’re strongly encouraged to remove said driver using a handy Dell utility and install updated software that prevents the unwanted driver from reemerging on your system at any future point. Said vulnerability—which earned a CVSS score of 8.8 out of 10 for severity—”may lead to escalation of privileges, denial of service, or information disclosure,” describes Dell. (Though it’s worth noting “local authenticated access” to one’s computer is required for an attacker to use this vulnerability to their advantage—either in-person, or through some kind of malware/phishing/remote access exploit.)

To get started, download and run the “Dell Security Advisory Update – DSA-2021-088″ utility, which should find and remove dbutil_2_3.sys for you. You can also hunt for this file manually. It could appear in one of two places:

  • C:Users<username>AppDataLocalTemp
  • C:WindowsTemp

If, or when, you find the file yourself, simply Shift+Delete to banish it into obscurity.

You can also wait until May 10, at which point running a regular system update using any of Dell’s built-in tools, like SupportAssist or Dell Update, will automatically install and run the “DSA-2021-088″ utility. You’ll need to run one of these tools anyway to install the aforementioned newer firmware update that will prevent this older, vulnerable…