Opera vulnerabilities are listed when the application has never been installed

Versions / Builds Affected

Languard - all versions

Status

Resolved

Problem Summary

LanGuard displays several Opera vulnerabilities such as OVAL 19975, 19634, 19026 or 19790 when HP Operations Agent is installed on the remote computers

TT / JIRAID

1755

How to Identify

If you detect these vulnerabilities after a security scan, check if the following registry key exists: 1- Click on 'Start' and select 'Run' 2- Enter 'regedit' and click on the 'OK' button 3- In the 'Registry Editor' click on 'File' and select 'Connect Network Registry...' 4- Enter the name of the remote machine and click on 'OK' 5- Once connected, a new hive will appear for the target machine. Ensure that the following path exists: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Operations-agent

Workaround / Fix Details

Since these vulnerabilities are already defined and published by OVAL, the only possible workarounds would be: 1- Modify the conditions for each vulnerability listed. They should refer to '[Oo]pera' instead of '[Oo]pera.*$' 2- Disable all Opera vulnerabilities from the Scanning Profile Editor 3- Ignore the vulnerabilities detected going to 'Dashboard' tab > 'Vulnerabilities' > select the vulnerability name > 'Ignore'

Required Actions

- Attach the article to the case - Follow one of the possible workarounds