HP.Mercury.Agent.Buffer.Overflow
Description
It indicates a possible exploit of a buffer overflow vulnerability in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent, Performance Center Agent and Monitor over Firewall, that may allow remote attackers to execute arbitrary code via a packet with a long server_ip_name field, sent to TCP port 54345.
Affected Products
HP Mercury Performance Center Agent 8.1 FP4
HP Mercury Performance Center Agent 8.1 FP3
HP Mercury Performance Center Agent 8.1 FP2
HP Mercury Performance Center Agent 8.1 FP1
HP Mercury Performance Center Agent 8.1
HP Mercury Performance Center Agent 8.0
HP Mercury Monitor over Firewall 8.1
HP Mercury LoadRunner Agent 8.1 SP1
HP Mercury LoadRunner Agent 8.1 GA
HP Mercury LoadRunner Agent 8.1 FP4
HP Mercury LoadRunner Agent 8.1 FP3
HP Mercury LoadRunner Agent 8.1 FP2
HP Mercury LoadRunner Agent 8.1 FP1
HP Mercury LoadRunner Agent 8.0 GA
HP HP-UX 11.11
Impact
Privilege escalation.
Recommended Actions
Apply patch.
http://h71028.www7.hp.com/enterprise/cache/447066-0-0-0-121.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |