Remote Code Execution Vulnerability in HP Easy Printer Care Software
CVE-2011-2404

Currently unrated

Key Information:

Vendor

HP

Vendor
CVE Published:
11 August 2011

What is CVE-2011-2404?

The HP Easy Printer Care Software contains a vulnerable ActiveX control (HPTicketMgr.dll) that allows attackers to remotely execute arbitrary programs on client machines. This vulnerability exists due to insufficient validation of the commands executed via the ActiveX control, which can be exploited to download and run malicious software without user interaction. Addressing this vulnerability is critical for maintaining the security of affected systems.

References

EPSS Score

80% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.