Vulnerability in HP Customer Support Software Encourages Malicious Exploitation
According to CSIS Security Group, on June 4, 2008, customer support software that comes pre-installed in Hewlett-Packard (HP) computers provides users with default updates of HP software and drivers. But flaws in ActiveX components in HP Instant Support results in several vulnerabilities that could be exploited to evade security restrictions, allowing hackers to compromise a user's computer.
CSIS has identified eight different security flaws in the application. Of these five are rated as highly critical as they allow execution of remote code. The software versions that are vulnerable to attacks are HP Instant Support HPISDataManager.dll 22.214.171.124 and earlier. HP is, therefore, advising users to install the updated version 126.96.36.199 through its security bulletin.
The Security ...
» SPAMfighter News - 6/16/2008
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!