Intrusion Prevention

HP.Mercury.Agent.Buffer.Overflow

Description

It indicates a possible exploit of a buffer overflow vulnerability in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent, Performance Center Agent and Monitor over Firewall, that may allow remote attackers to execute arbitrary code via a packet with a long server_ip_name field, sent to TCP port 54345.

Affected Products

HP Mercury Performance Center Agent 8.1 FP4
HP Mercury Performance Center Agent 8.1 FP3
HP Mercury Performance Center Agent 8.1 FP2
HP Mercury Performance Center Agent 8.1 FP1
HP Mercury Performance Center Agent 8.1
HP Mercury Performance Center Agent 8.0
HP Mercury Monitor over Firewall 8.1
HP Mercury LoadRunner Agent 8.1 SP1
HP Mercury LoadRunner Agent 8.1 GA
HP Mercury LoadRunner Agent 8.1 FP4
HP Mercury LoadRunner Agent 8.1 FP3
HP Mercury LoadRunner Agent 8.1 FP2
HP Mercury LoadRunner Agent 8.1 FP1
HP Mercury LoadRunner Agent 8.0 GA
HP HP-UX 11.11

Impact

Privilege escalation.

CVE References

CVE-2007-0446