Security News > 2017 > May > HP pushes out fix for keylogging audio driver in its laptops (Help Net Security)

HP pushes out fix for keylogging audio driver in its laptops (Help Net Security)
2017-05-12 15:12

Swiss security consultancy Modzero revealed on Thursday that a number of HP laptops contain an audio driver that logs users’ keystrokes and stores them in an unencrypted file on the local system. After repeatedly failing to get concrete answers from both HP and Conexant Systems (the audio driver’s vendor), they went public with the flaw (CVE-2017-8360). The vulnerability The vulnerability does not seem intentional – the real goal of the Conexant HD Audio Driver is … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/NNuRojvZ_1E/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2017-05-12 CVE-2017-8360 Information Exposure vulnerability in Conexant Mictray64 1.0.0.46
Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process.
local
low complexity
conexant CWE-200
5.5

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
HP 6795 19 248 488 234 989