Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-4789
HistoryJan 13, 2012 - 4:14 a.m.

CVE-2011-4789

2012-01-1304:14:38
CWE-119
[email protected]
web.nvd.nist.gov
108
cve-2011-4789
buffer overflow
hp loadrunner
security
vulnerability
patch 4
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.902 High

EPSS

Percentile

98.8%

JSON

Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it was originally reported that the affected product is HP Diagnostics Server, but HP states that “the vulnerable product is actually HP LoadRunner.”

Affected configurations

NVD
Node
hpdiagnostics
CPENameOperatorVersion
hp:diagnosticshp diagnosticseq*

Related

saint 4
packetstorm 1
nvd 1
checkpoint_advisories 1
securityvulns 5
openvas 2
cvelist 1
nessus 2
zdi 1
prion 1
saint
saint
HP Diagnostics Server magentservice.exe Integer Wrap
2012-01-26 00:00:00
HP Diagnostics Server magentservice.exe Integer Wrap
2012-01-26 00:00:00
HP Diagnostics Server magentservice.exe Integer Wrap
2012-01-26 00:00:00
packetstorm
packetstorm
HP Diagnostics Server magentservice.exe Overflow
2012-01-28 00:00:00
nvd
nvd
CVE-2011-4789
2012-01-13 04:14:38
checkpoint_advisories
checkpoint_advisories
HP Diagnostics magentservice.exe Code Execution (CVE-2011-4789)
2012-05-14 00:00:00
securityvulns
securityvulns
HP Diagnostics Server buffer overflow
2012-06-03 00:00:00
[security bulletin] HPSBMU02785 SSRT100526 rev.1 - HP LoadRunner Running on Windows, Remote Execution of Arbitrary Code
2012-06-03 00:00:00
ZDI-12-016 : (0Day) HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability
2012-01-16 00:00:00
openvas
openvas
HP Diagnostics Server 'magentservice.exe' Buffer Overflow Vulnerability
2012-02-01 00:00:00
HP Diagnostics Server 'magentservice.exe' Buffer Overflow Vulnerability
2012-02-01 00:00:00
cvelist
cvelist
CVE-2011-4789
2012-01-13 02:00:00
nessus
nessus
HP LoadRunner < 11.00 Patch 4 Code Execution Vulnerability
2012-06-26 00:00:00
HP LoadRunner < 11.00 Patch 4 Code Execution (intrusive check)
2012-11-13 00:00:00
zdi
zdi
(0Day) HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability
2012-01-12 00:00:00
prion
prion
Stack overflow
2012-01-13 04:14:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.902 High

EPSS

Percentile

98.8%

JSON
Related for CVE-2011-4789
saint4packetstorm1nvd1checkpoint_advisories1securityvulns5openvas2cvelist1nessus2zdi1prion1