CVE-2017-8360

low-risk

Published 2017-05-12

Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process. In mictray64.exe (mic tray icon) 1.0.0.46, a LowLevelKeyboardProc Windows hook is used to capture keystrokes. This data is leaked via unintended channels: debug messages accessible to any process that is running in the current user session, and filesystem access to C:\Users\Public\MicTray.log by any process.

Do I need to act?

0.20% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Mictray64

Affected Vendors

Conexant

References (6)

http://www.securitytracker.com/id/1038527

Exploit https://www.modzero.ch/advisories/MZ-17-01-Conexant-Keylogger.txt

Exploit https://www.modzero.ch/modlog/archives/2017/05/11/en_keylogger_in_hewlett-packar...

http://www.securitytracker.com/id/1038527

Exploit https://www.modzero.ch/advisories/MZ-17-01-Conexant-Keylogger.txt

Exploit https://www.modzero.ch/modlog/archives/2017/05/11/en_keylogger_in_hewlett-packar...

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal