CVE-2013-4800HIGH
Description
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1735.
References
http://packetstormsecurity.com/files/123533
http://www.securityfocus.com/bid/61446
http://www.zerodayinitiative.com/advisories/ZDI-13-169
https://exchange.xforce.ibmcloud.com/vulnerabilities/85960
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03862772
Details
Source: MITRE
Published: 2013-07-29
Updated: 2017-08-29
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 9.3
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 8.6
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:hp:loadrunner:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.50.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:9.52:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:11.50:*:*:*:*:*:*:*
cpe:2.3:a:hp:loadrunner:*:*:*:*:*:*:*:* versions up to 11.51 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 69424 | HP LoadRunner < 11.52 SSL Connection Handling Stack Buffer Overflow RCE | Nessus | Gain a shell remotely | high |