Computer Security
[EN] securityvulns.ru no-pyccku


HP eSupportDiagnostics ActiveX unauthorized access
updated since 20.12.2007
Published:27.04.2008
Source:
SecurityVulns ID:8481
Type:remote
Threat Level:
6/10
Description:Unsafe ReadTextFile() / ReadValue() methods allow file system / registry access.
CVE:CVE-2008-0712
Original documentdocumentHP, HPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code (27.04.2008)
 documentElazar Broad, [Full-disclosure] HP eSupportDiagnostics hpediags.dll Information Disclosure (20.12.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod