HP.Photo.Digital.Imaging.HPQXML.DLL.File.Overwrite

description-logoDescription

An ActiveX control in hpqxml.dll in Hewlett-Packard (HP) Digital Imaging has an arbitrary file overwrite vulnerability. A remote attacker could create or overwrite arbitrary files via the second argument to the saveXMLAsFile method.

affected-products-logoAffected Products

HP HP Photo Digital Imaging hpqxml.dll 2.0.0.133

Impact logoImpact

File Manipulation.

recomended-action-logoRecommended Actions

Currently we are not aware of any official supplied fix for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)