PT-2013-5201 · Hewlett Packard · Hp Loadrunner

Published

2013-07-26

Updated

2017-08-29

CVE-2013-4801

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions HP LoadRunner versions prior to 11.52

Description The issue allows remote attackers to execute arbitrary code. The vulnerability is related to the HP LoadRunner lrLRIServices ActiveX Control, specifically the SetOutputDirectory function.

Recommendations For versions prior to 11.52, update to version 11.52 or later to resolve the issue. As a temporary workaround, consider restricting access to the lrLRIServices ActiveX Control to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-4801

ZDI-13-209

Affected Products

Hp Loadrunner

PT-2013-5201 · Hewlett Packard · Hp Loadrunner

CVE-2013-4801

Related Identifiers

Affected Products

References · 6