Hackers can hijack your HP laptop
If you owned a HP laptop, please beware. Chances of your Microsoft Windows laptop got hijacked is pretty simple by luring you to a malicious website. A researcher, known as “porkythepig” discovered this vulnerability. He offers a web page that detects if your HP laptop is vulnerable (use it at your own risk).
According to Milw0rm.com post, the pwnage comes courtesy of “HP Info Center” which comes installed on most HP laptops. This is one of the ActiveX controls uses three insecure methods that leave users open to remote code execution and remote registry manipulation-based attacks. The file HPInfoDLL.dll is targeted for this exploit.
There is no patch available at the moment. To avoid this attack, do not click on suspicious link, install McAfee SiteAdvisor for Internet Explorer and use an alternative web browser, Mozilla Firefox with McAfee SiteAdvisor and NoScript.
Source: Ryan Naraine’s Zero Day Blog
A simple guy trying to put his name into the WWW place.
December 17th, 2007 at 8:56 am
lucky me don’t have HP laptop
December 18th, 2007 at 7:03 pm
Loon,i guess i’m a victim. i don’t know how it happened. i actually ‘bought’ a bouquet of flowers and sent it to an address dat i put in the online stor database for my previous transaction. it happened at 1am m’sian time, at time, i didn’t know what happen until d online stor called me saying dey don’t do delivery on weekends. i was shock! how i’ve changed all my passwords and keep my fingers crossed dat it won’t happen again. i think my credit card info has been compromised too
December 18th, 2007 at 8:23 pm
ayahshiva, you are lucky,
Fei Lou, you should report this incident to HP and see what is their solution.
December 22nd, 2007 at 8:53 am
Dude…i have a hp laptop man and worst still i work there and i havent heard anything about it! hahahah….oh well! no one pc is perfect anyway…i guess its about being well informed and taking precautions isnt it?
December 26th, 2007 at 5:10 pm
Lucky think i am not aiming for a HP Laptop. Dell ftw!