Executive Summary
| Summary | |
|---|---|
| Title | HP Easy Printer Care Software Running on Windows, Remote Execution of Arbitrary Code |
| Informations | |||
|---|---|---|---|
| Name | HPSBPI02698 SSRT100404 | First vendor Publication | 2011-08-08 |
| Vendor | HP | Last vendor Modification | 2012-01-11 |
| Severity (Vendor) | N/A | Revision | 2 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| A potential security vulnerability has been identified with HP Easy Printer Care Software Running on Windows. The vulnerability can be remotely exploited to write arbitrary files to the system and execute them via the browser. |
Original Source
| Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02949847 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
SAINT Exploits
| Description | Link |
|---|---|
| HP Easy Printer Care Software HPTicketMgr.dll ActiveX Control Remote Code Execution | More info here |
| HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution | More info here |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 78306 | HP Easy Printer Care Software CacheDocumentXMLWithId() Method XMLCacheMgr Cla... |
| 78305 | HP Easy Printer Care Software HPTicketMgr.dll SaveXML() Method XMLSimpleAcces... |
| 74510 | HP Easy Printer Care Software HPTicketMgr.dll ActiveX Arbitrary Program Execu... |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 24044 - Revision : 10 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 24043 - Revision : 9 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 24042 - Revision : 10 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 24041 - Revision : 9 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 24040 - Revision : 10 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX function call access RuleID : 24039 - Revision : 10 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care XMLSimpleAccessor ActiveX function call access attempt RuleID : 23253 - Revision : 9 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX function call RuleID : 21077 - Revision : 12 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access RuleID : 21076 - Revision : 11 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 21064 - Revision : 13 - Type : BROWSER-PLUGINS |
| 2014-01-10 | HP Easy Printer Care Software ActiveX clsid access attempt RuleID : 21063 - Revision : 13 - Type : BROWSER-PLUGINS |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2011-12-13 | Name : The remote Windows host is missing an update that disables selected ActiveX c... File : smb_nt_ms11-090.nasl - Type : ACT_GATHER_INFO |
| 2011-08-12 | Name : An ActiveX control on the remote Windows host could allow arbitrary remote co... File : hpticketmgr_activex.nasl - Type : ACT_GATHER_INFO |
