CVE-2011-2404

Currently unrated

Key Information:

Vendor: HP
Status: Easy Printer Care Software
Vendor: CVE Published:; 11 August 2011

Summary

A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-4786 and CVE-2011-4787.

References

http://securityreason.com/securityalert/8332

third-party-advisoryx_refsource_SREASON

http://marc.info/?l=bugtraq&m=131291471508119&w=2

vendor-advisoryx_refsource_HP

http://securityreason.com/securityalert/8348

third-party-advisoryx_refsource_SREASON

EPSS Score

72% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 11, 2011
Vulnerability Reserved
Jun 6, 2011