Last Updated: 2007-12-19 03:09:47 UTC
by Stephen Hall (Version: 1)
HP released a vulnerability notice to Bugtraq on the 15th December indicating that :
A potential security vulnerability has been identified with the HP Quick Launch Button (QLB) software running on Windows. The vulnerability could be exploited remotely to execute arbitrary code or to gain privileged access.
Well, we received an e-mail from our good friend Raul Siles which indicate that this is potential more serious than a 'potential vulnerability' as POC code exists which grants remote access.
A workaround which disables HP Info Center is being hosted here: