CVE-2007-4740

Telecom Italy Alice Messenger - Unauthenticated Registry Manipulation via HPRevolutionRegistryManager ActiveX Control

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4740. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages an unsafe ActiveX control (HP.Revolution.RegistryManager.dll) to manipulate arbitrary registry keys remotely. It adds a malicious entry to the Run key to execute commands for user creation, privilege escalation, and service manipulation.

Description

The HPRevolutionRegistryManager ActiveX control in Hp.Revolution.RegistryManager.dll 1 in Telecom Italy Alice Messenger allows remote attackers to create registry keys and values via the arguments to the WriteRegistry method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · htmlremotewindows

https://www.exploit-db.com/exploits/4357

View Code ZIP pw:eip

This exploit leverages an unsafe ActiveX control (HP.Revolution.RegistryManager.dll) to manipulate arbitrary registry keys remotely. It adds a malicious entry to the Run key to execute commands for user creation, privilege escalation, and service manipulation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Telecom Italy Alice Messenger (HP.Revolution.RegistryManager.dll v.1)

No auth needed

Prerequisites: Victim must visit a malicious webpage or open the HTML file · Target system must have the vulnerable DLL registered

MITRE ATT&CK