Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6513

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-6513
Last Modified 05 Sep 2008 05:33:25
Published 21 Dec 2007 05:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6513

Summary

HP eSupportDiagnostics ActiveX control (hpediag.dll) 1.0.11.0 exports dangerous methods, which allows remote attackers to (1) read arbitrary files via the ReadTextFile method, or (2) read arbitrary registry values via the ReadValue method.

Vulnerable Systems

Application

  • Hp Esupportdiagnostics 1.0.11.0


References

XF - hp-esupportdiagnostics-info-disclosure(39156)

BID - 26967

MISC - http://www.heise-security.co.uk/news/100934

FULLDISC - 20071219 HP eSupportDiagnostics hpediags.dll Information Disclosure


Last Updated: 27 May 2016 10:46:31