Atbatt

Software that can be downloaded for use with the Energizer Duo USB battery

Software that can be downloaded for use with the Energizer Duo USB battery charger contains a backdoor that could allow an attacker to remotely take control of a Windows-based PC, Energizer and US-CERT is warning.

“The installer for the Energizer Duo software places the file UsbCharger.dll in the application’s directory and Arucer.dll in the Windows system32 directory for 12″ apple powerbook g4 battery ,” the U.S. Computer Emergency Readiness Team said in an advisory on Friday. “Arucer.dll is a backdoor that allows unauthorized remote system access via accepting connections on 7777/tcp. Its capabilities include the ability to list directories, send and receive files, and execute programs.”

The Trojan may have been in the software since it was first offered three years ago, according to Symantec. For systems with the software installed, US-CERT recommends removing the Energizer Duo software and Arucer of Sony VGP-BPS13 battery .dll file, as well as blocking access to port 7777 via network perimeter devices or firewall software.

“We were interested in finding out how long this file had been available to the public. The compile time for the file is May 10, 2007. It is impossible to say for sure that this Trojan has always been in this software, but from our initial inspection it appears so,” Symantec wrote in a blog post of 17″ apple powerbook g4 battery . “The Trojan still operates whether this device is found or not, so a USB charger doesn’t need to be plugged in for the Trojan to be functioning.”

The battery maker said it does not know how the Trojan got into the software. “Energizer has discontinued sale of this product and has removed the site to download the software of 15″ apple powerbook g4 aluminum battery ,” the statement said. “Energizer is currently working with both CERT and U.S. government officials to understand how the code was inserted in the software.”