HP Support Assistant < 8.1.52.1 Unspecified Local Authentication Bypass

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

An application installed on the remote Windows host is affected by an
unspecified local authentication bypass vulnerability.

Description :

The version of HP Support Assistant installed on the remote Windows
host is prior to 8.1.52.1. It is, therefore, affected by an
unspecified flaw that allows an attacker to bypass local
authentication.

See also :

http://www.nessus.org/u?4af8e69c

Solution :

Upgrade to HP Support Assistant version 8.1.52.1 or later.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.1
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 90545 ()

Bugtraq ID: 84969

CVE ID: CVE-2016-2245

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now