Remote File Deletion Vulnerability in HP Instant Support
CVE-2007-5610
Currently unrated
What is CVE-2007-5610?
The DeleteSingleFile function in the HPISDataManagerLib.Datamgr ActiveX control within the HPISDataManager.dll file allows remote attackers to delete arbitrary files. This occurs when an attacker provides a full pathname in the function's argument, leading to potential information loss and compromise of system integrity. Users of HP Instant Support versions prior to 1.0.0.24 are particularly affected by this vulnerability.