ID CVE-2013-4798
Summary Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1705.
References
Vulnerable Configurations
  • cpe:2.3:a:hp:loadrunner:9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:9.50.0:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:9.50.0:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:9.51:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:9.51:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:9.52:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:9.52:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:11.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:11.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:11.50:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:11.50:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:-:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:-:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:loadrunner:11.51:*:*:*:*:*:*:*
    cpe:2.3:a:hp:loadrunner:11.51:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 29-08-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 61443
hp
  • HPSBGN02905
  • SSRT101074
osvdb 95642
xf hp-loadrunner-cve20134798-code-exec(85958)
saint via4
bid 61443
description HP LoadRunner lrFileIOService ActiveX WriteFileString Method Traversal Vulnerability
id misc_mercuryloadrunnerver
osvdb 95642
title hp_loadrunner_lrfileioservice_writefilestring_traversal
type client
Last major update 29-08-2017 - 01:33
Published 29-07-2013 - 13:59
Last modified 29-08-2017 - 01:33
Back to Top