HP.Easy.Printer.Care.Software.ActiveX.Directory.Traversal
Description
This indicates an attack attempt against a Directory Traversal vulnerability in HP's Easy Printer Care Software.
The vulnerability is caused by the application's failure to sufficiently validate user supplied data. A remote attacker can exploit this by sending a specially crafted web page. Successful attacks may allow attackers to overwrite arbitrary files on the vulnerable system.
Affected Products
HP Easy Printer Care Software v2.5 and earlier.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply patches or fixes from the vendor, available from the website:
http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c02949847&ac.admitted=1312987052411.876444892.199480143
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |