4 matches found
HP LoadRunner Controller Scenario File Stack Buffer Overflow (CVE-2015-5426)
A stack-based buffer overflow vulnerability exists in HP LoadRunner Controller. The vulnerability is due to insufficient boundary checks while parsing scenario files. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted ".lrs" files with the...
CVE-2015-5426
HP LoadRunner Controller (pre-12.50) is affected by a stack-based buffer overflow while parsing .lrs scenario files, allowing local code execution in the context of the current user. HP’s security bulletin HPSBMU03339 rev.1 states only impacted versions are affected and recommends upgrading to HP...
[security bulletin] HPSBMU03339 rev.1 - HP LoadRunner Controller, Local Execution of Arbitrary Code
Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04692147 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04692147 Version: 1 HPSBMU03339 rev.1 - HP LoadRunner Controller, Local Execution...
HP LoadRunner < 12.50 Scenario File Local Code Execution
The version of HP LoadRunner installed on the remote host is prior to 12.50. It is, therefore, affected by a local code execution vulnerability due to an overflow condition that is triggered when handling scenario files .lrs. A local attacker can exploit this, via a specially crafted scenario fil...