Lucene search

[email protected]NVD:CVE-2007-6513

HistoryDec 21, 2007 - 10:46 p.m.

CVE-2007-6513

2007-12-2122:46:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.3%

JSON

HP eSupportDiagnostics ActiveX control (hpediag.dll) 1.0.11.0 exports dangerous methods, which allows remote attackers to (1) read arbitrary files via the ReadTextFile method, or (2) read arbitrary registry values via the ReadValue method.

Affected configurations

Nvd

Node

hpesupportdiagnosticsMatch1.0.11.0

VendorProductVersionCPE
hpesupportdiagnostics1.0.11.0cpe:2.3:a:hp:esupportdiagnostics:1.0.11.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	esupportdiagnostics	1.0.11.0	cpe:2.3:a:hp:esupportdiagnostics:1.0.11.0:::::::*

References

archives.neohapsis.com/archives/fulldisclosure/2007-12/0470.html

www.heise-security.co.uk/news/100934

www.securityfocus.com/bid/26967

exchange.xforce.ibmcloud.com/vulnerabilities/39156

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.3%

JSON

Related for NVD:CVE-2007-6513

exploitdb1 prion2 cve2 cvelist2 nvd1