漏洞类别:Local
漏洞等级: 
漏洞信息
HP audio driver on some HP-manufactured computers records users' keystrokes and stores them in a world-readable plaintext file.
QID Detection Logic (Authenticated):
Check if "C:\Windows\System32\MicTray64.exe" or "C:\Windows\System32\MicTray.exe" or "%systemdrive%\Users\Public\MicTray.log" (Log file) exists on the file system.
漏洞危害
Anyone with access to the unencrypted file system could view the recorded keystrokes.
解决方案
There are no vendor supplied patches.
Workaround:
Rename or delete C:\Windows\System32\MicTray64.exe or C:\Windows\System32\MicTray.exe.
0day
文章评论