CVE-2008-0952

HPISDataManagerLib.Datamgr <1.0.0.24 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0952. PoCs published by Dennis Rand.

AI-analyzed exploit summary This exploit leverages a vulnerability in the HP Instant Support ActiveX control (HPISDataManager.dll) to create or overwrite arbitrary files with attacker-controlled content. The PoC uses VBScript to call the vulnerable 'AppendStringToFile' method, demonstrating file manipulation on the target system.

Description

The AppendStringToFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to create files with arbitrary content via a full pathname in the first argument and the content in the second argument, a different vulnerability than CVE-2007-5608 and CVE-2008-0953.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dennis Rand · xmldoswindows

https://www.exploit-db.com/exploits/31878

View Code ZIP pw:eip

This exploit leverages a vulnerability in the HP Instant Support ActiveX control (HPISDataManager.dll) to create or overwrite arbitrary files with attacker-controlled content. The PoC uses VBScript to call the vulnerable 'AppendStringToFile' method, demonstrating file manipulation on the target system.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: HP Instant Support 1.0.0.22 and earlier

No auth needed

Prerequisites: Target system must have the vulnerable HP Instant Support ActiveX control installed · Attacker must be able to execute arbitrary script in the context of the target's browser

MITRE ATT&CK

T1218 - System Binary Proxy Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →