HP Easy Printer Care Software 'XMLCacheMgr' ActiveX Control Remote Code Execution Vulnerability

Bugtraq ID:	51396
Class:	Unknown
CVE:	CVE-2011-4786
Remote:	Yes
Local:	No
Published:	Jan 12 2012 12:00AM
Updated:	Jan 18 2012 07:10AM
Credit:	Andrea Micalizzi aka rgod
Vulnerable:	HP Easy Printer Care Software 2.5
Not Vulnerable:

HP Easy Printer Care Software 'XMLCacheMgr' ActiveX Control Remote Code Execution Vulnerability

HP Easy Printer Care Software running on Windows is prone to a remote code-execution vulnerability.

An attacker could exploit this issue to write arbitrary data to a local file and execute that data in the context of the application using the affected control (typically Internet Explorer).

HP Easy Printer Care Software 2.5 and prior versions are vulnerable.

HP Easy Printer Care Software 'XMLCacheMgr' ActiveX Control Remote Code Execution Vulnerability

To exploit this issue, an attacker must entice a victim to view a malicious Web page.

The following exploit is available:

• /data/vulnerabilities/exploits/51396.rb

HP Easy Printer Care Software 'XMLCacheMgr' ActiveX Control Remote Code Execution Vulnerability

Solution:
Vendor updates are available. Please see the referenced advisory for more information.

HP Easy Printer Care Software 'XMLCacheMgr' ActiveX Control Remote Code Execution Vulnerability

References:

• HP Easy Printer Care Software (HP)
  
• HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution Vul (Zero Day Initiative)
  
• HPSBPI02698 SSRT100404 rev.2 - HP Easy Printer Care Software Running on Windows, (HP)