PT-2011-2246 · Hewlett Packard · Hp Loadrunner

Publicado

2011-01-12

Atualizado

2017-08-17

CVE-2011-0272

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP LoadRunner version 9.52

Description The issue allows remote attackers to execute arbitrary code via network traffic to TCP port 5001 or 5002, related to the HttpTunnel feature.

Recommendations For HP LoadRunner version 9.52, consider restricting access to TCP ports 5001 and 5002 to minimize the risk of exploitation. As a temporary workaround, consider disabling the HttpTunnel feature until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2011-0272

ZDI-11-015

Produtos afetados

Hp Loadrunner

PT-2011-2246 · Hewlett Packard · Hp Loadrunner

CVE-2011-0272

Identificadores relacionados

Produtos afetados

Referências · 9