CVE-2009-5151

Name of the Vulnerable Software and Affected Versions Absolute Computrace Agent version V70.785

Description The issue allows attackers to execute code on the BIOS by exploiting the stub component of the Absolute Computrace Agent, which executes code from a disk's inter-partition space without requiring a digital signature. This enables a privileged local user to achieve persistent control of BIOS behavior, independent of later disk changes.

Recommendations For Absolute Computrace Agent version V70.785, consider disabling the stub component until a patch is available to prevent execution of unsigned code from the disk's inter-partition space.