Code Execution Vulnerability in HP Instant Support by HP
CVE-2008-0953
Currently unrated
What is CVE-2008-0953?
The StartApp function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll, found in HP Instant Support versions prior to 1.0.0.24, allows remote attackers to execute arbitrary programs. This can be achieved by supplying a malicious .exe filename as an argument to the function, enabling potential exploitation of the vulnerability by unauthorized users.