KLA10186
Multiple vulnerabilities in HP Quick Launch Button

Multiple serious vulnerabilities have been found in HP Quick Launch Button. Malicious users can exploit these vulnerabilities to read and write arbitrary registry entries or execute arbitrary programs Below is a complete list of vulnerabilities

1. Vectors related to GetRegValue and SetRegValue can be exploited remotely;
2. A path traversal vulnerability can be exploited remotely via the LaunchApp method.

HP Quick Launch Button versions 6.3 and earlier

Update to latest version

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/4720

https://www.exploit-db.com/exploits/4720

https://www.exploit-db.com/exploits/4720