Energizer pulls DUO charger after Trojan discovery
by Steve Ragan - Mar 8 2010, 17:37
Energizer pulls DUO charger after Trojan discovery. (IMG: Energizer)
Energizer has pulled its DUO charger from the market thanks to a security vulnerability that was discovered within the monitoring software made available to Windows-based PCs.
Energizer’s DUO line has been available in the United States since 2007, and the USB charger launched in Europe, Latin America, and Asia around the same time. It allows Nickel Metal Hydride (NiMH) batteries to charge from both a wall outlet and USB connection. The DUO line also offers the ability to real-time monitor the status of the charging via a PC.
According to a CERT bulletin and a notice from Energizer, the real-time monitoring software was made available with a DLL file that acts as a backdoor to the system, allowing remote access to port 7777. This access grants total control to an attacker, but the impact is lessened if the user’s account is restricted.
However, the quazi-Malware exists on the Windows version of the monitoring software only. The version offered for Macintosh systems is not affected. Energizer has not stated the number of downloads for the software, so there is no way to gauge the total number of systems potentially impacted.
“Energizer has discontinued sale of this product and has removed the site to download the software,” Energizer said in a statement. “In addition, the company is directing consumers that downloaded the Windows version of the software to uninstall or otherwise remove the software from your computer.”
The file at the root of the problem -- 'Arucer.dll' -- will remain after the software is uninstalled. It is located in the system32 folder under the Windows directory. However, if you find that it cannot be removed after the software is uninstalled, restart the system and try again.
Again, the hardware Energizer sold is not the problem, while the software it made available is. If you have not installed the software, you can continue to use the DUO without fear.
More information from CERT can be viewed by clicking here.
Comment on this Story