Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2024 and is owned by Tenable, Inc. or an Affiliate thereof.HP_LOADRUNNER_CVE-2013-4800.NBIN
HistoryAug 15, 2013 - 12:00 a.m.

HP LoadRunner < 11.52 SSL Connection Handling Stack Buffer Overflow RCE

2013-08-1500:00:00
This script is Copyright (C) 2013-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.97

Percentile

99.7%

JSON

The version of HP LoadRunner running on the remote host is affected by a remote code execution vulnerability due to a failure to validate the length of data before copying it into a fixed-size buffer when handling connections using SSL. A remote, unauthenticated attacker can exploit this, via a specially crafted request, to cause a stack-based buffer overflow, resulting in the execution of arbitrary code with SYSTEM privileges.

Binary data hp_loadrunner_cve-2013-4800.nbin

Related

openvas 1
nvd 1
zdt 1
zdi 1
prion 1
metasploit 1
packetstorm 1
exploitdb 1
cvelist 1
checkpoint_advisories 1
attackerkb 1
cve 1
nessus 1
securityvulns 2
openvas
openvas
HPE LoadRunner 'magentproc.exe' Stack Buffer Overflow Vulnerability
2017-02-03 00:00:00
nvd
nvd
CVE-2013-4800
2013-07-29 13:59:14
zdt
zdt
HP LoadRunner magentproc.exe Overflow Vulnerability
2013-10-08 00:00:00
zdi
zdi
Hewlett-Packard LoadRunner Stack Buffer Overflow Remote Code Execution Vulnerability
2013-07-26 00:00:00
prion
prion
Code injection
2013-07-29 13:59:00
metasploit
metasploit
HP LoadRunner magentproc.exe Overflow
2013-10-03 21:52:20
packetstorm
packetstorm
HP LoadRunner magentproc.exe Overflow
2013-10-07 00:00:00
exploitdb
exploitdb
HP LoadRunner - &#039;magentproc.exe&#039; Remote Overflow (Metasploit)
2013-10-08 00:00:00
cvelist
cvelist
CVE-2013-4800
2013-07-26 18:00:00
checkpoint_advisories
checkpoint_advisories
HP LoadRunner magentproc.exe Stack Buffer Overflow (CVE-2013-4800)
2013-10-27 00:00:00
attackerkb
attackerkb
CVE-2013-4800 HP LoadRunner magentproc.exe Overflow
2013-07-29 00:00:00
cve
cve
CVE-2013-4800
2013-07-29 13:59:14
nessus
nessus
Mercury LoadRunner Agent server_ip_name Field Remote Buffer Overflow
2007-02-13 00:00:00
securityvulns
securityvulns
[security bulletin] HPSBGN02905 rev.1 - HP LoadRunner, Remote Code Execution and Denial of Service &#40;DoS&#41;
2013-07-29 00:00:00
HP LoadRunner multiple security vulnerabilities
2013-07-29 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.97

Percentile

99.7%

JSON
Related for HP_LOADRUNNER_CVE-2013-4800.NBIN
openvas1nvd1zdt1zdi1prion1metasploit1packetstorm1exploitdb1cvelist1checkpoint_advisories1attackerkb1cve1nessus1securityvulns2