HP.Instant.Support.ActiveX.Control.Access

description-logoDescription

This indicates a possible attempt to exploit some issues in HP Instant Support.
The vulnerability is in the "HPISDataManager.dll" ActiveX control through misused methods. It may allow remote attackers to execute arbitrary code in the context of the application, or download, write, execute, and delete arbitrary files on the vulnerable system.

affected-products-logoAffected Products

HP Instant Support HPISDataManager.dll v1.0.0.22 and later versions.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Disable this ActiveX Control by setting its kill bit, or upgrade to HP Instant Support v1.0.0.24 or later versions, available from the vendor's website.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-01-11 16.995