SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   HP Compaq Notebook PC BIOS Vendors:   HPE
HP Compaq Notebook PC BIOS Lets Local Users Bypass the Power-on Password Feature to Gain Access
SecurityTracker Alert ID:  1019730
SecurityTracker URL:  http://securitytracker.com/id/1019730
CVE Reference:   CVE-2008-0706   (Links to External Site)
Date:  Mar 28 2008
Impact:   User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): Certain notebooks using BIOS versions F.26 and prior
Description:   A vulnerability was reported in HP Compaq Notebook PC BIOS. A local user can gain access to the target system.

A physically local user can bypass the power-on password feature to gain access to the system.

The Compaq Presario C700 Notebook, HP G7000 Notebook, and Compaq Presario A900 Notebooks using BIOS versions F.26 and earlier are affected.

Impact:   A local user can access the target system.
Solution:   The vendor has issued a fix (BIOS F.31, available in SoftPaq SP38646).

The vendor's advisory is available at:

http://www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01393763

Vendor URL:  www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01393763 (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC