HTTP: HP Easy Printer Care Software HPTicketMgr.dll ActiveX
This signature detects attempts to use unsafe ActiveX controls in HP Easy Printer Care Software. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
HP Easy Printer Care Software running on Windows is prone to a remote code-execution vulnerability. Successfully exploiting this issue allows an attacker to execute arbitrary code in the context of the application running the affected control (typically Internet Explorer). HP Easy Printer Care Software 2.5 and prior versions are vulnerable.
Affected Products
Hp easy_printer_care_software
Short Name
HTTP:STC:ACTIVEX:HP-EASYPRINTER
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX CVE-2011-2404 CVE-2011-4787 Care Easy HP HPTicketMgr.dll Printer Software bid:49100 bid:51400
Release Date
08/19/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Hp
CVSS Score
7.5
9.3