CVE-2015-5426 - Unspecified vulnerability in HP LoadRunner Controller before 12.50 allows local users to gain privil

CVE-2015-5426

Summary

Unspecified vulnerability in HP LoadRunner Controller before 12.50 allows local users to gain privileges via unknown vectors, aka ZDI-CAN-2756.

References

Vulnerable Configurations

cpe:2.3:a:hp:loadrunner:-:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:-:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.50.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.50.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.52:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.52:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.50:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.50:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.52:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.52:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.52:p3:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.52:p3:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.00:p1:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.00:p1:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.01:p3:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.01:p3:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.02:p2:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:12.02:p2:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

refmap via4

confirm	https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04692147
misc	http://www.zerodayinitiative.com/advisories/ZDI-15-408
sectrack	1033561

Last major update

22-12-2016 - 03:00

Published

16-09-2015 - 02:00

Last modified

22-12-2016 - 03:00