Security Vulnerability within LMInfo.sys

SOSCOMP
New Contributor
2 years ago
We updated LMI manaully and rebooted. Problem still exists. It can be triggered by looking at properties>details of the lmiinfo.sys file (which are blank) or by opening LMI control Panel and going to About>Check for updates, among other triggers. But that is easiest way to see if update worked. When LMI is uninstalled and reinstalled, the properties>Details of the lmiinfo.sys file are not blank -shows version info etc and cannot trigger ESET.
GlennD
GoTo Manager
2 years ago
SOSCOMP After updating the computers did you reboot them? Can you update one and then reboot it and see if ESET still reports an issue? If the driver is in use at the time the update will not be able to replace it fully until the system is rebooted.
SOSCOMP
New Contributor
2 years ago
We did that last week when we found out about the release-it did not help. Please see all of my previous posts in htis thread. So far the only thing working is to uninstall and reinstall LogMein.

2 out 140 PCs done 😞 Please help.
ProCentPM
GoTo Contributor
2 years ago
Hey!

Last Tuesday we released a new host version that is slowly being deployed to customers. You can update manually to this latest version that contains the fix of the issue detected by ESET.
SOSCOMP
New Contributor
2 years ago
Hi-just checking to see if you kn ow if the LMI team is working on a fix -thanks!
SOSCOMP
New Contributor
2 years ago
Also cannot do ad hoc support when LMI is already installed -in case we wanted to uninstall LMI and reinstall it to mimick the fresh install test we did
SOSCOMP
New Contributor
2 years ago
We took a Windows10 PC with just ESET on it and installed LogmeIn (never on system before) and ESET did not detect anything-ran a custom scan on hte LMI directory too. The LMIinfo.sys in this new install is 11.1.0.3236. When we check the properties for the systems with LMI already installed and updated there is no version information listed. Odd. Could it be we have to uninstall and install LMI on the systems? Hard to do remotely I guess unless we do an ad hoc session to the systems, then uninstall and reinstall LMI?
SOSCOMP
New Contributor
2 years ago
We manually updated one to the new LMI version as a test. Didn't help. Like I said we don't have any issue on one that has a fresh LMI installation and has ESET. I sent a reply on this earlier too
GlennD
GoTo Manager
2 years ago
SOSCOMP When we deploy new versions only a small number of systems receive it in the beginning, did you manually updated all of your computers to the new Host software 4.1.0.15410? The computers that ESET is reporting an issue with may not have updated yet, have you confirmed that they are all running v4.1.0.15410 of the Host software?
SOSCOMP
New Contributor
2 years ago
We took a Windows10 PC with just ESET on it and installed LogmeIn (never on system before) and ESET did not detect anything-ran a custom scan on hte LMI directory too. The LMIinfo.sys in this new install is 11.1.0.3236. When we check the properties for the systems with LMI already installed and updated there is no version information listed. Odd. Could it be we have to uninstall and install LMI on the systems? Hard to do remotely I guess unless we do an ad hoc session to the systems, then uninstall and reinstall LMI?
SOSCOMP
New Contributor
2 years ago
The LMI update did not fix the issue for us. We use ESET endpoint Security. What Antivirus are you using? Any resolution for you yet?
SOSCOMP
New Contributor
2 years ago
Hi -Windows 10 Pro and Windows11 Pro
2ARM5
Active Contributor
2 years ago
Interesting. Users have reported, and I myself experienced, an update prompt without manually checking for an update. I've now reviewed the installed version on all systems, about 12% are up to date. Guess we'll give it some time.

Thanks
GlennD
GoTo Manager
2 years ago
2ARM5 If the computers are left to self update it should happen in the background and your users will not be asked for admin credentials to complete it. If a user manually checks for an upgrade the admin credentials are required as a security feature.
GlennD
GoTo Manager
2 years ago
SOSCOMP What version of Windows is being used? We tested all supported Windows versions and only identified an issue with Windows 7 x64 and Server 2008 R2 x64 as they have issues validating the signature of the updated driver. According to Microsoft this Windows update should help with that: https://catalog.update.microsoft.com/search.aspx?q=kb4474419
2ARM5
Active Contributor
2 years ago
Hi Glenn,

All of our systems are set to update automatically, but the update is prompting users for admin. credentials.

Our users don't have admin. rights. Is there a way to run this update programmatically?
SOSCOMP
New Contributor
2 years ago
Hi we are having same issue and with our endpoint security and LMI. We have ran the LMI update today (version.15410 installed) and rebooted. Our ENDpoint product is upto date as well.
"A potentially unsafe application (Win64/LogMeIn.A) found in a file (the filename is random)" tried to access."
Please help-pop-ups occurring often!
GlennD
GoTo Manager
2 years ago
Hi,

We have begun deploying the update to accounts and systems will begin auto updating over the coming days.
lmiuser12
New Contributor
2 years ago
thanks for the update

Forum Discussion

Security Vulnerability within LMInfo.sys

Recent Discussions

Account registration failed.

Error when connecting. (Error occurred error: 14094410:lib(20):func(148):reason(1040))

I want my account and data deleted

When does "Logmein Pro" supports under Apple Silicon macs (macOS) audio support?

Dual monitor selection not showing