12 matches found
DSquare Exploit Pack: D2SEC_HPLR
Name| d2sechplr ---|--- CVE| CVE-2010-1549 Exploit Pack| D2ExploitPack Description| HP Mercury LoadRunner Agent Remote Code Execution Vulnerability Notes|...
HP Mercury LoadRunner Agent Trusted Input Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Mercury LoadRunner. Authentication is not required to exploit this vulnerability. The specific flaw exists within the process magentproc.exe that binds to TCP port 54345. A specially crafted...
XUpload ActiveX Control AddFolder Method Buffer Overflow
The remote host contains a version of the XUpload ActiveX control from Persits Software that reportedly is affected by a buffer overflow in its 'AddFolder' method that can be triggered by a long argument. If a remote attacker can trick a user on the affected host into visiting a specially crafted...
CVE-2007-6530
Buffer overflow in the XUpload.ocx ActiveX control in Persits Software XUpload 2.1.0.1, and probably other versions before 3.0, as used by HP Mercury LoadRunner and Groove Virtual Office, allows remote attackers to execute arbitrary code via a long argument to the AddFolder function...
Mercury LoadRunner XUpload ActiveX控件缓冲区溢出漏洞
BUGTRAQ ID: CNCAN ID:CNCAN-2007122709 Mercury LoadRunner是一款预测系统行为和性能的负载测试工具。 Mercury LoadRunner包含的XUpload ActiveX控件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 XUpload ActiveX控件对"AddFolder"方法缺少正确的边界错误,构建恶意的WEB页,诱使用户访问,可触发缓冲区溢出,精心构建提交数据可能以应用程序进程权限执行任意指令。 HP LoadRunner 9.x Mercury LoadRunner 8.x --------...
HP Mercury LoadRunner mchan.dll buffer overflow
Added: 02/16/2007 CVE: CVE-2007-0446 BID: 22487 OSVDB: 33132 Background HP Mercury LoadRunner is a load testing solution. Problem A buffer overflow in the mchan.dll library allows remote attackers to execute arbitrary commands by sending a packet with a long serveripname field to port 54345/TCP...
Mercury LoadRunner Detection
Binary data 3911.prm...
ZDI-07-007: HP Mercury LoadRunner Agent Stack Overflow Vulnerability
ZDI-07-007: HP Mercury LoadRunner Agent Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-007.html February 8, 2007 -- CVE ID: CVE-2007-0446 -- Affected Vendor: Hewlett-Packard Mercury -- Affected Products: Mercury LoadRunner Agent 8.1 Mercury LoadRunner Agent 8.0...
HP Mercury LoadRunner Agent buffer overflow
magentproc.exe TCP/54345 stack buffer overrun on oversized serveripname paramter...
[security bulletin] HPSBGN02187 SSRT061280 rev.1 - Mercury LoadRunner, Performance Center, Monitor over Firewall, Remote Unauthenticated Arbitrary Code Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00854250 Version: 1 HPSBGN02187 SSRT061280 rev.1 - Mercury LoadRunner, Performance Center, Monitor over Firewall, Remote Unauthenticated Arbitrary Code Execution NOTICE: The information in this...
DSquare Exploit Pack: D2SEC_MERCURY_LR
Name| d2secmercurylr ---|--- CVE| CVE-2007-0446 Exploit Pack| D2ExploitPack Description| HP Mercury LoadRunner 8.1 - Agent Stack Overflow Notes|...
Hewlett-Packard Mercury LoadRunner Agent Stack Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Mercury LoadRunner Agent, Mercury Performance Center Agent and Mercury Monitor over Firewall. Authentication is not required to exploit this vulnerability. The specific flaw exists...