Dolby Audio X2 (DAX2) privilege escalation

2016-08-04T00:00:00
ID LENOVO:PS500012-NOSID
Type lenovo
Reporter Lenovo
Modified 2016-08-04T00:00:00

Description

A vulnerability has been identified with the file permissions for the Dolby DAX2 application programming interface (API) that could allow a local user to run files with system level privileges.

Mitigation Strategy for Customers (what you should do to protect yourself):
Lenovo is currently working with Dolby to release an updated version of this driver that contains a fix to this vulnerability. For customers who are concerned about this issue, Lenovo has released a batch file that fixes the insecure permissions on the Windows Dolby driver files. By running this batch file as an administrator the Dolby Audio X2 driver will no longer be vulnerable to this issue. This batch file is available here.

Alternatively, users can manually remove the vulnerable file permissions by removing access rights to the “Authenticated Users” group from these directories:

For 32-bit Windows: C:\Program Files (x86)\Dolby\Dolby DAX2\DAX2_API
For 64-bit Windows: C:\Program Files\Dolby\Dolby DAX2\DAX2_API

For 32-bit Windows: icacls "C:\Program Files (x86)\Dolby\Dolby DAX2\DAX2_API" /remove "Authenticated Users"
For 64-bit Windows: icacls "C:\Program Files\Dolby\Dolby DAX2\DAX2_API" /remove "Authenticated Users"

Product Impact: