|
|
RETIRED: HP Instant Support 'HPISDataManager.dll' ActiveX Control Unspecified Code Execution
HP Instant Support 'HPISDataManager.dll' ActiveX control is prone to multiple unspecified vulnerabilities that allow remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions. HP Instant Support 1.0.0.22 and earlier versions are affected. NOTE: This BID is being retired; the following individual records have been created to better document the issues: 29529 HP Instant Support 'HPISDataManager.dll' 'ExtractCab' ActiveX Control Buffer Overflow Vulnerability 29530 HP Instant Support ActiveX Control in 'HPISDataManager.dll' Arbitrary File Download Vulnerability 29531 HP Instant Support 'HPISDataManager.dll' 'GetFileTime' ActiveX Control Buffer Overflow Vulnerability 29532 HP Instant Support 'HPISDataManager.dll' 'MoveFile' ActiveX Control Buffer Overflow Vulnerability 29533 HP Instant Support 'HPISDataManager.dll' 'StartApp' ActiveX Control Insecure Method Vulnerability 29534 HP Instant Support 'HPISDataManager.dll' 'RegistryString' Buffer Overflow Vulnerability 29535 HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Creation Vulnerability 29536 HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Delete Vulnerability |
|
Privacy Statement |