Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4789

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-4789
Last Modified 27 Nov 2012 11:31:52
Published 12 Jan 2012 11:14:38
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4789

Summary

Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it was originally reported that the affected product is HP Diagnostics Server, but HP states that "the vulnerable product is actually HP LoadRunner."

Vulnerable Systems

Application

  • Hp Diagnostics


References

MISC - http://zerodayinitiative.com/advisories/ZDI-12-016/

OSVDB - 78309

HP - HPSBMU02785

HP - SSRT100526

BID - 51398


Last Updated: 27 May 2016 10:58:02