5.8
CVE-2007-6333
- EPSS 8.68%
- Veröffentlicht 13.12.2007 19:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:50
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Info Center Version1.0.1.1
Hp ≫ Quick Launch Button Version <= 6.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 8.68% | 0.944 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01300486
http://secunia.com/advisories/28055
http://securitytracker.com/id?1019086
http://www.anspi.pl/~porkythepig/hp-issue/kilokieubasy.txt
http://www.securityfocus.com/archive/1/484880/100/100/threaded
http://www.securityfocus.com/bid/26823
http://www.vupen.com/english/advisories/2007/4192
https://www.exploit-db.com/exploits/4720
https://exchange.xforce.ibmcloud.com/vulnerabilities/38994