HP has released a new driver package update to fix the security vulnerability. The debugging has been left on and is essentially logging every keystroke.
If the MicTray.log file exits in C:\Users\Public, it can potentially vulnerable. It should be best to update it if you're unsure. On most machines, I've see this file on, it was blank.
Here's the official link from HP that includes the driver packages to download if your systems is listed as the affected.
https://support.hp.com/in-en/document/c05519670
For G3 and newer generation models it seems this is applicable, haven't seen the other models or newer G4s in our environment to need this.
ftp://ftp.hp.com/pub/softpaq/sp80001-80500/sp80323.exe
Extract the files using 7zip or running the installer, using the command line "Setup.exe -S" to install silent will do it. It doesn't reboot the system but will require a reboot.
You should script this to delete the MicTray.log during the driver update.
After updating, the driver details should be relatively recent.
No comments:
Post a Comment