CyberSec.Space Logo
返回 CVE 浏览器

CVE-2014-7892

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1650%
EPSS Percentile27.67th
Published2015年3月9日
Last Modified2026年5月6日

Vulnerability Description

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSMSR.ocx for Mini MSR magnetic stripe readers, Retail Integrated Dual-Head MSR magnetic stripe readers, Integrated Single Head MSR w/o SRED magnetic stripe readers, Integrated Single Head w/o MSR SRED magnetic stripe readers, RP7 Single Head MSR w/o SRED magnetic stripe readers, POS keyboards, and POS keyboards with MSR, aka ZDI-CAN-2508.

Affected Platforms (CPE)

📦
Hp

Ole Point Of Sale Driver

<= 1.13.001

References & Advisories

🔗 http://www.securitytracker.com/id/1031840
🔗 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04583185
🔗 http://www.securitytracker.com/id/1031840
🔗 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04583185

相关漏洞威胁

CVE-2014-788910.0

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary c...

CVE-2014-789010.0

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary c...

CVE-2014-789110.0

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary c...

CVE-2014-788810.0

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary c...