Vulnerability Details CVE-2007-6513
HP eSupportDiagnostics ActiveX control (hpediag.dll) 1.0.11.0 exports dangerous methods, which allows remote attackers to (1) read arbitrary files via the ReadTextFile method, or (2) read arbitrary registry values via the ReadValue method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.085
EPSS Ranking 92.0%
CVSS Severity
CVSS v2 Score 4.3
References
- http://archives.neohapsis.com/archives/fulldisclosure/2007-12/0470.html
- http://www.heise-security.co.uk/news/100934
- http://www.securityfocus.com/bid/26967
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39156
- http://archives.neohapsis.com/archives/fulldisclosure/2007-12/0470.html
- http://www.heise-security.co.uk/news/100934
- http://www.securityfocus.com/bid/26967
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39156
Products affected by CVE-2007-6513
-
cpe:2.3:a:hp:esupportdiagnostics:1.0.11.0