Security [CENTRAL] Forum - SCforum.info
21. May 2012., 16:27:29 *
Welcome, Guest. Please login or register.

Login with username, password and session length

SCforum.info - Security [CENTRAL] Forum

↑ Grab this Headline Animator

Custom Search
News: For ultra cheap bullet proof vests, hard armor ballistic plates or for advice on body armor in general visit SafeGuardClothing.com
 
  Home Help Chess Links Login Register   *

SCforum.info


furniture store



SCF Friends
SCF Portal Stats
Members
Total Members: 11250
Latest: guadalupefos1127
Stats
Total Posts: 15613
Total Topics: 4329
Online Today: 1198
Online Ever: 51419
(01. January 2010., 10:27:49)

SCF UnSpam

Top Ten Antivirus Software

Friend of WOT


SCF Feedburner

SCF Facebook

SCF Twitter

Welcome to SCforum.info - Security [CENTRAL] Forum, a home of the SCF Community devoted to provide Computer related News, Alerts, Downloads and FREE Help in such a way that even the novice computer user can understand.

Getting started using our community is extremely easy, check the two steps below:

Step 1: Create an account by clicking here and wait for approval from Administrator. It's completely free with no hidden strings attached.

Step 2: If you have a computer problem and need some help, or just want to take part in opened discussions, simply browse Forum. Once you *Register an account, you can quickly post your questions and comments.

(*Registered Members get: free support, also, they can communicate privately with other members via PM, removal of this message, see fewer ads and much more...)





Security [CENTRAL] Forum - SCforum.info > World TOP Headlines: > Latest Security News & Alerts (Moderators: neerajrawat1, jheysen) > Topic: Security bug in HP support app aids hackers
Pages: 1
« previous next »
  Print  
Author Topic: Security bug in HP support app aids hackers  (Read 1235 times)
0 Members and 1 Guest are viewing this topic.
Samker
SCF Administrator
*****

KARMA: 86
Gender: Male
Location: Europe
Posts: 5071


Whatever doesn't kill us makes us stronger.

Google Talk
WWW
« on: 06. June 2008., 08:51:18 »


A customer support application that comes bundled with HP PCs have been found to harbour multiple security vulnerabilities.

The pre-installed software is designed to make it easy for users to keep drivers and HP software automatically updated. But flaws in ActiveX components within HP Instant Support give rise to multiple vulnerabilties that lend themselves to drive-by download malware attacks in cases where Windows users running the vulnerable software stray onto insecure or hacker controlled websites, CSIS Security Group warns.

HP Instant Support HPISDataManager.dll version 1.0.0.22 and earlier are vulnerable. Users need to upgrade to version 1.0.0.24 as explained in a security bulletin from HP here.

A CSIS advisory containing proof of concept demos of the flaws can be found here. And there's an easy to digest bit from Secunia here.

It's not the first trouble HP has had with rogue ActiveX controls in its pre-installed utilities. In December last year two ActiveX bugs created a mechanism for hackers to either thrash or inject hostile code onto HP PCs running either HP Software Update or HP Info Center, respectively.

News Source: The Register
Logged
~

SCF "Remote PC Assist": http://scforum.info/index.php/topic,3067.0.html

~~~
Security [CENTRAL] Forum - SCforum.info
« on: 06. June 2008., 08:51:18 »


 Logged
Pages: 1
  Print  
Security [CENTRAL] Forum - SCforum.info > World TOP Headlines: > Latest Security News & Alerts (Moderators: neerajrawat1, jheysen) > Topic: Security bug in HP support app aids hackers
 « previous next »
 
Jump to:  

Enter your email address to receive daily email with 'SCforum.info - Security CENTRAL Forum' newest content:

Terms of Use | Privacy Policy | Advertising
Powered by MySQL Powered by PHP Powered by SMF | SMF © 2011, Simple Machines
TinyPortal © Bloc 		Valid XHTML 1.0! Valid CSS!


Google visited last this page 18. May 2012., 04:31:06