HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Delete Vulnerability

HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Delete Vulnerability

References:

HP Instant Support Home Page (HP )
Microsoft Knowledge Base Article 240797 (Microsoft)
Microsoft Security Advisory (953839) Cumulative Security Update of ActiveX Kill (Microsoft)
Advisory - HP Online Support Service ActiveX multiple vulnerabilities (CSIS Security Research and Intelligence)
VU#857539 HP Online Support Service ActiveX DeleteSingleFile() arbitrary file de (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus