HP eSupportDiagnostics ActiveX unauthorized access
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
HP eSupportDiagnostics ActiveX unauthorized access
updated since 20.12.2007
Published:
27.04.2008
Source:
BUGTRAQ
SecurityVulns ID:
8481
Type:
remote
Level:
6
/10
Description:
Unsafe ReadTextFile() / ReadValue() methods allow file system / registry access.
CVE:
CVE-2008-0712
Original document
HP
,
HPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code
(
27.04.2008
)
Elazar Broad
,
[Full-disclosure] HP eSupportDiagnostics hpediags.dll Information Disclosure
(
20.12.2007
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
