3 matches found
CVE-2013-4797
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1690...
CVE-2013-4797
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1690...
CVE-2013-4797
HP LoadRunner vulnerability CVE-2013-4797 involves the LrWebIEBrowserMgr.dll ActiveX control. The ZDI advisory (ZDI-13-206) details a remote code execution flaw in the FlushSnapshotToFile method of this control, where improperDestinationPath sanitization enables directory traversal and arbitrary ...