CVE-2008-0953 in Instant Supportinfo

Summary

The StartApp function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary programs via a .exe filename in the argument, a different vulnerability than CVE-2007-5608 and CVE-2008-0953.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/25/2008

Disclosure

06/04/2008

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119

Exploit

Download

CVSS

10.0

EPSS

0.11039

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-0953
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-0953
CVE Details	https://www.cvedetails.com/cve/CVE-2008-0953/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!