Home arrow US-CERT Computer Emergency Readiness Team arrow HP Info Center Software Public Exploit Code

HP Info Center Software Public Exploit Code

US-CERT is aware of public reports stating that the HP Info Center Software, which allows one-touch access to features on HP laptops, may contain a vulnerability. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands or to view or alter the system registry on affected systems.

These reports also refer to publicly available exploit code for this vulnerability.

To help mitigate the security risk, US-CERT recommends that users and administrators disable ActiveX and follow other best security practices as described in the Securing Your Web BrowserSecuring Your Web Browser document.
%%shM2%%http://www.us-cert.gov/reading_room/securing_browser/
US-CERT will provide additional information as it becomes available.