TDSCSA00038: Installers of development tool software products for Toshiba original core-based microcontrollers have a security vulnerability

TDSCSA00038: Installers of development tool software products for Toshiba original core-based microcontrollers have a security vulnerability

Outline

List of affected products
Contact and way to get the updated products
EOL announced products

How to confirm affected products

Affected products

All products of microcontroller development tool software for Toshiba original core-based microcontrollers released before August 2019. 

List of affected products

How to confirm affected products

  • Toshiba Integrated Development Environment, or Flash programmer
    Select “Help” – “Version” in the main menu, and the model name or product name and the version number are displayed.
  • Debugger
    Select “Help” – “About TMPRO Debugger” in the main menu, and the version number is displayed.
  • Compiler (C compiler, C compiler & assembler set, etc.)
    “Name” and “Version” can be confirmed by “Control Panel” – “Programs and Features”. 

Vulnerability description

The affected installers of the Products contain an issue with their DLL (Dynamic Link Libraries) path, which may unintentionally load DLL if executed.

Impact

If your Windows PC contains unauthorized DLL maliciously implanted by an attacker and you execute the affected installers of the Products, the affected installers may cause unintentionally operations on your Windows PC.

Solution

Please use the updated products.
The updated products should be used on Windows 10.

Updated Products

References

Information about the vulnerability is as follows.

  • Privilege acquisition vulnerability in Flexera InstallShield

Update history

Contact and way to get the updated products

Please contact our website and get the updated products from our department in charge. 
Please enter the necessary information in "Contact us" at the top of the our website and get the updated products from the department in charge. 
Please fill in the required form "*" and enter "Update microcontroller development tool software" and your "Updated Products" in " Inquiry Details ".

Contact us
Contact us

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.
Permalink: https://mitigbt.com/tdscsa00038-installers-of-development-tool-software-products-for-toshiba-original-core-based-microcontrollers-have-a-security-vulnerability/
Tags:
« »

Leave a Reply