CVE-2007-6333

{"id": "CVE-2007-6333", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2007-12-13T19:46:00.000", "references": [{"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01300486", "source": "cve@mitre.org"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01300486", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/28055", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1019086", "source": "cve@mitre.org"}, {"url": "http://www.anspi.pl/~porkythepig/hp-issue/kilokieubasy.txt", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/484880/100/100/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26823", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/4192", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38994", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/4720", "source": "cve@mitre.org"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01300486", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01300486", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/28055", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1019086", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.anspi.pl/~porkythepig/hp-issue/kilokieubasy.txt", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/484880/100/100/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/26823", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/4192", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38994", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.exploit-db.com/exploits/4720", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method."}, {"lang": "es", "value": "El control ActiveX HPInfoDLL.HPInfo.1 en la biblioteca HPInfoDLL.dll versi\u00f3n 1.0, tal como es incorporado con HP Info Center (hpinfocenter.exe) versi\u00f3n 1.0.1.1 en HP Quick Launch Button (QLBCTRL.exe, tambi\u00e9n se conoce como QLB) versiones 6.3 y anteriores, permiten a los atacantes remotos leer valores de registro arbitrarios por medio de los argumentos en el m\u00e9todo GetRegValue."}], "lastModified": "2024-11-21T00:39:53.740", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:info_center:1.0.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE1CB4B1-ED5B-423E-B976-E88EEE3FC8AF"}, {"criteria": "cpe:2.3:a:hp:quick_launch_button:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EED37865-BCCF-4F1B-B2CA-363DBBBEA153", "versionEndIncluding": "6.3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}