Acer May Be Bugging Computers

tomjen writes "What if a well known laptop company had silently placed an ActiveX Control on their computers that allowed any webpage to execute any program? Well Acer apparently has and they have (based on the last modified-by date of the file) been doing this since 1998. 'Checking the interface of the control reveals it has a method named "Run()" as shown below. The method supports parameters "Drive", "FileName", and "CmdLine". Isn't it strange for a control that's marked "safe for scripting" to allow a method that is suggestive of possible abuse?'"

Re:to those of us uneducated

Please give examples or something of how this could be used for ill purposes. Yes, I realize it is obvious to most people but I'm a beginner. I do not know what harm can come of the power, in and of itself, of being able to run a program that is already on computer. Would one, through this particular acer thing, be able to pass things to that program and then have that program in turn do other bad things or what? Please give rudimentary examples.

One could, for example, use the Windows ftp.exe client to download an arbitrary program (e.g. botnet software) and then execute it. I'm certain there are even better ways to do it but this one could work well enough to completely take over the machine.

Re:present on Aspire 1690

[valeurnutritive]

To remove this from your machine.

Goto Start > Run and type:
regsvr32 -u lunchapp.ocx

(-u for uninstall)

Uhh, there already IS an exploit...

[nweaver]

Read the article: Theres a trivial piece of example "exploit" code running calc.exe.

But as you can run ANY windows binary with any command line (at least according to the article), actual exploitation is trivial.

Late again!

[whoever57]

Apparently, someone in Brazil noticed this last November

Re:And now that it's publicized...

[Ninwa]

The class-id was in the article :-) D9998BD0-7957-11D2-8FED-00606730D3AA