Overview

Dynabook has identified a security vulnerability in a legacy Bluetooth ACPI driver (TOSRFEC.SYS) originally used on systems designed for Windows Vista, Windows 7, Windows 8, Windows 8.1, or Windows 10.

This driver may still be present on systems that were later upgraded to Windows 11. Systems that do not have this driver installed are not affected.

Dynabook has released an updated driver to address this issue.  [Direct Link Here - TCH1456700A]

Vulnerability Description

The affected driver could allow someone to gain administrator access to the computer and run unauthorized software, potentially interfering with normal operation.

Exploitation requires that the attacker already have administrative privileges on the local system. The vulnerability cannot be used by a standard user to elevate privileges.

Additional conditions required for exploitation include:

·       Local access to the system

·       Existing administrative privileges

Based on current analysis, Dynabook is not aware of a scenario in which this vulnerability could be exploited remotely or used to gain initial access to a system.

Because exploitation requires prior administrative access to the system, risk is reduced in environments where administrative access is properly controlled.

Resolution

Dynabook has released a remediated version of the Bluetooth ACPI driver.

Windows Update (Recommended)

• The updated driver (drfec.sys version 11.0.2.3 or later) is being distributed through Windows Update.
• Customers should run Windows Update to ensure the latest driver version is installed.
• Installing the updated driver ensures that earlier vulnerable versions will not be reinstalled.
• Enterprise administrators using managed update environments should ensure that systems receive the updated driver through their standard update management processes.

Standalone Package

• A standalone driver package may also be provided on the system’s driver support page.

Support: Customers requiring assistance may contact Dynabook Technical Support.

Disclaimer

The information in this advisory is provided for the purpose of assisting customers in identifying and addressing the described issue. Dynabook may update this advisory as additional information becomes available. The information is provided “as is” without warranty of any kind.