(Microsoft, Oracle, SAP SE ..) , .
, .
Duo Security : HP, Dell, Acer, Lenov Asus. , . .
Duo , , OEM (OEM, Original Equipment Manufacturers) (updaters), . . — , .
( PDF).
OEM ( HTTP, ). , .
Duo Security:
, , . , OEM .
— . , . ( ), . , , , . , . .
Duo Security (Darren Kemp) :
- . , , ( ).
. , . , Apple, , . Bloatware ( ).
:
, « » Apple . () Apple… .
, : , . Bloatware — , , . OEM . .
12 . , .
| | | | CVE ( ) |
| HPSA (HP ) | | | |
| HPSF DLL | | | |
| HP Support Framework | | 13 2016 . HP CVE, | |
| HP.com | | 31 2016 . | |
| / HTTP- | | , | |
| HPDIA Downloads | | , | |
| HPDIA Downloads | | , | |
| Asus | Asus LiveUpdate | | . 125 | CVE-2016-3966 |
| Asus Giftbox | | . 125 | CVE-2016-3967 |
| Acer | | | . 45 | CVE-2016-3964 |
| | | . 45 | CVE-2016-3965 |
| Lenovo | LiveAgent | | 2016 . | CVE-2016-3944 |
OEM, Dell . , HTTPS. Dell Foundation Services. -, Dell .
Hewlett-Packard . HTTPS, . . , . . , URL. .
Lenovo — Lenovo Solutions Center UpdateAgent. . . .
Acer . , . , .
Asus . , « , ». , , . Asus HTTP HTTPS. , MD5 ( «Asus Live Update»).
, HTTPS . , . Lenovo, HP Dell . Acer Asus .
- . HP . Lenovo . Acer Asus , .
(Steve Manzuik), Duo Labs:
Asus , . ...