Acer makes available a patch to address Active X security vulnerability

Thought this might be instrested to all acer users so i cut and pasted into the fourms


Acer makes available a patch to address Active X security vulnerability


Jan 11, 2007Lainate (Milan, Italy)


After recent observations from Acer users regarding the potential security risks caused by LunchApp, an executable binary that registers itself as an ActiveX control, Acer confirms that a patch was introduced at the factory side on 4th December 2006 and shortly afterwards was made available to Acer’s global service team.

This patch, called AcerLAppFix.exe, is now available for download by Acer’s global customer base at the following address http://support.acer-euro.com/drivers/utilities.html, selecting Acer Preload Security Patch for Windows XP.

The patch performs the following functions:


Checks whether the file LunchApp.ocx exists under C:\Windows\System
Where present, calls "regsvr32.exe -u -s LunchApp.ocx" to unregister the ActiveX control
Deletes LunchApp
The security issue, that occurs in Windows XP pre load, does not affect Windows Vista systems that do not include the LunchApp application.

Acer takes matters of security and user protection extremely seriously and has proactively developed and introduced this solution with the utmost urgency and transparency.

Users can download the patch at the following address: http://support.acer-euro.com/drivers/utilities.html

 

Bump.

I ran across a thread about this vulnerability here:
http://www.dslreports.com/forum/remark,17621144

In case anybody missed it.