HP pushes out fix for keylogging audio driver in its laptops (Help Net Security)

2017-05-12 15:12

Swiss security consultancy Modzero revealed on Thursday that a number of HP laptops contain an audio driver that logs users’ keystrokes and stores them in an unencrypted file on the local system. After repeatedly failing to get concrete answers from both HP and Conexant Systems (the audio driver’s vendor), they went public with the flaw (CVE-2017-8360). The vulnerability The vulnerability does not seem intentional – the real goal of the Conexant HD Audio Driver is … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/NNuRojvZ_1E/

#HP #laptop #security #CVE-2017-8360

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2017-05-12	CVE-2017-8360	Information Exposure vulnerability in Conexant Mictray64 Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process. local low complexity conexant hp microsoft CWE-200	2.1

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
HP		8953	136	721	486	667	2010