Hewlett-Packard laptop owners warned of security threat

Users of Hewlett-Packard laptops are being warned that software bundled with their machines could open them up to hackers.

Antony Savvas
Published: 13 Dec 2007 14:21

Users of Hewlett-Packard laptops are being warned that software bundled with their machines could open them up to hackers.

The US Computer Emergency Readiness Team (US-CERT) says there is a security vulnerability in the HP Info Center Software, with a public exploit already circulating in hacking circles.

"US-CERT is aware of public reports stating that the HP Info Center Software, which allows one-touch access to features on HP laptops, may contain a vulnerability," said US-CERT in an advisory.

"This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands or to view or alter the system registry on affected systems," it said.

To help mitigate the security risk, US-CERT recommends that users and administrators disable ActiveX controls on machines and check the security of their browsers.

US-CERT plans to provide additional information on the HP flaw as it becomes available.

Read more on IT risk management

All
News
In Depth
Blog Posts
Opinion
Photo Stories
Videos

Latest News

Download Computer Weekly

In The Current Issue:
- CIO interview: Network Rail plans digital factory to accelerate modernisation
- What 5G applications will transform your business?
- Financial services and cloud: Delivering digital transformation in a highly regulated industry
Download Current Issue

Latest Blog Posts

Going online for a SIBOS press pass was harder than applying for a bank account – Fintech makes the world go around
Code One showcases Oracle developer tools & platform – Open Source Insider
View All Blogs

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

SearchCIO

CIO presentation to the board of directors: Candid tips from CIOs

Board presentations can be scary. The good news is CIOs can't go too wrong in a climate where boards are desperate to learn about...
Edge computing use cases must be driven by business value

For Schneider Electric and many other large enterprises that take a look at edge computing projects, the main criterion for ...
OT security brings new challenges in the age of IoT

We're diving into the IoT security challenges CIOs need to be aware of as a result of integrating OT devices, which often work in...

SearchSecurity

How to use Metasploit commands and exploits for penetration tests

These step-by-step instructions demonstrate how to use Metasploit for enterprise vulnerability and penetration testing.
Global cryptomining attacks use NSA exploits to earn Monero

Security researchers tracked a very active threat group launching cryptomining attacks around the world against organizations in ...
New evasive spear phishing attacks bypass email security measures

Researchers identified a new email security threat: evasive spear phishing attacks, which take months of investigation and social...

SearchNetworking

The evolution of SDN and its role in networking

Has SDN run its course, or has the architecture simply evolved? In many current products, data centers and cloud environments, ...
Wi-Fi Certified 6 launches new era for wireless connectivity

The Wi-Fi 6 wireless standard is now ready for deployment, thanks to the debut of a certification effort that helps guarantee ...
Try a CCNA 200-301 practice quiz from the official cert guide

This practice quiz provides a sneak peek into the new 'CCNA 200-301 Official Cert Guide, Volume 1,' which reflects Cisco's CCNA ...

SearchDataCenter

New Dell EPYC servers embrace AMD Rome chips

Dell EMC goes from Naples to Rome with a new line of EPYC servers, including Ready Solutions for high-performance computing and ...
Can next-gen SIEM help cybersecurity initiatives?

More organizations are using SIEM, AI and cloud technology to minimize security breaches. Though despite interest, this ...
IBM z15 mainframe secures data across multi-cloud environments

IBM unveiled the latest in its line of mainframes capable of processing 1 trillion web transactions a day. The IBM z15 ...

SearchDataManagement

InfluxDB Cloud 2.0 expands open source time series database

While the core open source InfluxDB 2.0 project is still in alpha, InfluxData has advanced its cloud service to support new ...
New cloud and on-premises options for Oracle Autonomous Database

Oracle introduced new cloud and on-premises deployment options for its namesake database as the tech vendor’s Oracle OpenWorld ...
How big tech breakup would affect the tech industry

Breaking up the tech giants would be difficult and might create initial chaos in market, help smaller competitors and potentially...

Close