1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP HP Software Update ActiveX File Overwrite

HTTP HP Software Update ActiveX File Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempt to exploit a file overwrite vulnerability by passing specially crafted arguments into vulnerable methods of HP Software Update ActiveX Control.

Additional Information

An attacker can exploit these issues by enticing an unsuspecting victim to visit a malicious HTML page.

Successfully exploiting these issues allows remote attackers to launch arbitrary applications with the privileges of the application running the ActiveX control (typically Internet Explorer).

Affected

  • Hpufunction.dll 4.0.0.1 is vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube