Vulnerability CVE-2015-6857
Published: 2015-11-25   Modified: 2015-11-26

Description:
Unspecified vulnerability in Virtual Table Server (VTS) in HP LoadRunner 11.52, 12.00, 12.01, 12.02, and 12.50 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-3138.

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
HP -> Loadrunner 
HP -> Performance center 

 References:
http://www.securityfocus.com/bid/77946
http://www.securitytracker.com/id/1034259
http://www.zerodayinitiative.com/advisories/ZDI-15-581
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04900820
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04907374
Copyright 2024, cxsecurity.com

 

Back to Top