HP LoadRunner 11.52 Buffer Overflow RCE

Critical Nessus Plugin ID 83815


The remote Windows host has an application that is affected by a remote code execution vulnerability.


The version of HP LoadRunner installed on the remote host is 11.52 without the proper patch to 'two_way_comm.dll'. It is, therefore, affected by a buffer overflow flaw that can allow an unauthenticated, remote attacker to execute arbitrary code in the context of the HP LoadRunner Agent process.


Apply the patch provided by HP.

See Also


Plugin Details

Severity: Critical

ID: 83815

File Name: hp_loadrunner_HPSBGN03286.nasl

Version: $Revision: 1.6 $

Type: local

Agent: windows

Family: Windows

Published: 2015/05/26

Modified: 2016/12/21

Dependencies: 59717

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:hp:loadrunner

Required KB Items: SMB/Registry/Enumerated, installed_sw/HP LoadRunner

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2015/05/19

Vulnerability Publication Date: 2015/05/19

Reference Information

CVE: CVE-2015-2110

BID: 74737

OSVDB: 122344

HP: HPSBGN03286, SSRT101319, emr_na-c04594015