Acer Releases Patch for LunchApp.ocx vulnerability

I originally published this blog at

Published:         January 18 2007, 01:29 PM         by         Benjamin Googins

Last week the CA Security Advisory Team and other security websites reported the computer company Acer had been distributing an Active X control, LunchApp.ocx, marked “safe for scripting’, which created a vulnerability for users. Since then, Acer has released a patch that unregisters and deletes LunchApp.ocx. This has been verified by CA engineers and US-CERT and is available directly from Acer at

By: Benjamin Googins


Benjamin Googins is a senior engineer working on CA’s Anti-Spyware product. His primary functions include analyzing spyware and privacy breaches, fielding press inquiries, blogging and drafting documents. He has been a significant contributor to the User Permission document , Spyware Scorecard , Threat… Read More..

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s