CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2014/10/16 12:0 a.m.•44 views

HP Sprinter Remote Code Execution

The version of HP Sprinter installed on the remote Windows host has multiple unspecified remote code execution vulnerabilities, which are related to the 'TTF16.ocx' ActiveX control. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid78514; scriptversion"1.14";...

7.5CVSS6.3AI score0.0484EPSS

Exploits0References5

Zero Day Initiative•added 2014/10/14 12:0 a.m.•32 views

Hewlett-Packard Sprinter TTF16.ocx SwapTables Method Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Sprinter. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability is found in Tidestone Formula One...

6.8CVSS6.8AI score0.0484EPSS

securityvulns•added 2014/10/11 12:0 a.m.•35 views

HP Sprinter multiple security vulnerabilities

Multiple shell execution vulnerabilities...

7.5CVSS1.4AI score0.0484EPSS

securityvulns•added 2014/10/11 12:0 a.m.•101 views

[security bulletin] HPSBMU03110 rev.1 - HP Sprinter, Remote Execution of Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04454636 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04454636 Version: 1 HPSBMU03110 rev....

7.5CVSS0.2AI score0.0484EPSS

Exploits0

NVD•added 2014/10/10 1:55 a.m.•12 views

CVE-2014-2636

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2336...

NVD•added 2014/10/10 1:55 a.m.•10 views

CVE-2014-2637

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2342...

NVD•added 2014/10/10 1:55 a.m.•15 views

CVE-2014-2638

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2344...

NVD•added 2014/10/10 1:55 a.m.•11 views

CVE-2014-2635

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2343...

Prion•added 2014/10/10 1:55 a.m.•14 views

Code injection

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2336...

Prion•added 2014/10/10 1:55 a.m.•16 views

Design/Logic Flaw

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2342...

Prion•added 2014/10/10 1:55 a.m.•16 views

Code injection

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2343...

Prion•added 2014/10/10 1:55 a.m.•12 views

Code injection

Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2344...

CVE•added 2014/10/10 1:0 a.m.•59 views

CVE-2014-2637

HP Sprinter 12.01 is affected by CVE-2014-2637 due to a CopyRange/CopyRangeEx memory corruption vulnerability in the Tidestone Formula One ActiveX controls (TTF16.ocx). The ZDI advisory states this allows remote code execution when a vulnerable installation visits a malicious page or opens a mali...

7.5CVSS7.8AI score0.0484EPSS