Still Going? Energizer Announces Duo Battery Charger and USB Charger Software Problem
The United States Computer Emergency Response Team (US-CERT) has warned that the software included in the Energizer DUO USB battery charger contains a backdoor that allows unauthorized remote system access.
Energizer DUO is a USB battery charger. Included with the charger is a Windows application that allows the user to view the battery charging status. The installer for the Energizer DUO software places the file UsbCharger.dll in the application’s directory and Arucer.dll in the Windows system32 directory. When the Energizer UsbCharger software executes, it utilizes the UsbCharger.dll component for providing USB communication capabilities. UsbCharger.dll executes Arucer.dll via the Windows rundll32.exe mechanism, and it also configures Arucer.dll to execute automatically when Windows starts by creating an entry in the HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run registry key..
The issue lies with Arucer.dll, which US-CERT says is a backdoor that allows unauthorized remote system access via accepting connections on 7777/tcp. The backdoor could potentially allow an attacker to remotely control a system, including the ability to list directories, send and receive files, and execute programs. The backdoor operates with the privileges of the logged-on user.
After many customer complaints and numerous poor software reviews, Energizer has discontinued sale of the product, as well as taken down the site where the software could be downloaded. For more information, click here-
