Vulnerability Description
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSScanner.ocx for Imaging Barcode scanners, Linear Barcode scanners, Presentation Barcode scanners, Retail Integrated Barcode scanners, Wireless Barcode scanners, and 2D Value Wireless scanners.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Ole Point Of Sale Driver | <= 1.13.001 |
| Hp | 2D Value Wireless Scanner K3L28Aa | All versions |
| Hp | Imaging Barcode Scanner Bw868Aa | All versions |
| Hp | Linear Barcode Scanner Qy405Aa | All versions |
| Hp | Presentation Barcode Scanner Qy439Aa | All versions |
| Hp | Retail Integrated Barcode Scanner E1L07Aa | All versions |
| Hp | Wireless Barcode Scanner E6P34Aa | All versions |
References
- http://www.securitytracker.com/id/1031840
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c0Vendor Advisory
- http://www.securitytracker.com/id/1031840
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c0Vendor Advisory
FAQ
What is CVE-2014-7897?
CVE-2014-7897 is a vulnerability with a CVSS score of 10.0 (HIGH). The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSScanner.ocx for Imaging Barcode scanners...
How severe is CVE-2014-7897?
CVE-2014-7897 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-7897?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Ole Point Of Sale Driver, Hp 2D Value Wireless Scanner K3L28Aa, Hp Imaging Barcode Scanner Bw868Aa, Hp Linear Barcode Scanner Qy405Aa, Hp Presentation Barcode Scanner Qy439Aa.