HP Notebook PCs with 4G LTE Module Let Remote Users Execute Arbitrary Code on the Target System : 8/28/2015 9:38:16 PM
Communicate with co-workers in real time. Used by Netflix, Dropbox & Salesforce. $0/unlimited users. Get started >> From our sponsors |
Vulnerability Databse |
This module replaces the description field of a feed to the page it links to (in addition, it wipes out the content:encoded field), so you can get its full text. |
HP Notebook PCs with 4G LTE Module Let Remote Users Execute Arbitrary Code on the Target System
8/28/2015 12:00:00 AM
HP Notebook PCs with 4G LTE Module Let Remote Users Execute Arbitrary Code on the Target System |
SecurityTracker Alert ID: 1033414 |
SecurityTracker URL: http://securitytracker.com/id/1033414 |
CVE Reference: CVE-2015-5367, CVE-2015-5368 (Links to External Site) |
Date: Aug 28 2015 |
Impact: Execution of arbitrary code via network, User access via network |
Fix Available: Yes Vendor Confirmed: Yes |
|
Description: Two vulnerabilities were reported in certain HP Notebook PCs. A remote user can execute arbitrary code on the target system. A remote user can send specially crafted data to execute arbitrary code on the target computer. Certain HP notebook PCs with the HP lt4112 LTE/HSPA+ Gobi 4G module are affected. The following HP computer products are affected: HP EliteBook 820 G1 HP EliteBook 820 G2 HP EliteBook 825 G2 HP EliteBook 840 G1 HP EliteBook 840 G2 HP EliteBook 845 G1 HP EliteBook 850 G1 HP EliteBook 850 G2 HP EliteBook 855 G1 HP EliteBook 1040 G1 HP EliteBook 1040 G2 HP EliteBook Folio 9470m HP EliteBook Revolve 810 G2 HP EliteBook Revolve 810 G3 HP ElitePad 1000 G2 HP Elite x2 1010 G2 HP ProBook 430 G1 HP ProBook 430 G2 HP ProBook 440 G0 HP ProBook 440 G1 HP ProBook 440 G2 HP ProBook 450 G0 HP ProBook 450 G1 HP ProBook 450 G2 HP ProBook 640 G1 HP ProBook 645 G1 HP ProBook 650 G1 HP ProBook 655 G1 HP ProBook x2 620 G1 HP Spectre x2 13-SMB Pro HP ZBook 14 HP ZBook 14 G2 HP ZBook 15 HP ZBook 15 G2 HP ZBook 15u HP ZBook 17 HP Zbook 17 G2 mt41 Thin Client Mickey Shkatov and Jesse Michael from the Advanced Threat Research team at Intel Security reported these vulnerabilities. |
Impact: A remote user can execute arbitrary code on the target system. |
Solution: HP has issued a firmware fix. The HP advisory is available at: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773272 |
Vendor URL: h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773272 (Links to External Site) |
Cause: Not specified |
Underlying OS: |
|
Message History: None. |
You are receiving this email because you subscribed to this feed at feedmyinbox.com
If you no longer wish to receive these emails, you can unsubscribe from this feed, or manage all your subscriptions
Diberdayakan oleh Blogger.