CVE-2007-0446
Hewlett-Packard Mercury LoadRunner Agent Stack Overflow Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Stack-based buffer overflow in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent 8.0 and 8.1, Performance Center Agent 8.0 and 8.1, and Monitor over Firewall 8.1 allows remote attackers to execute arbitrary code via a packet with a long server_ip_name field to TCP port 54345, which triggers the overflow in mchan.dll.
Desbordamiento de búfer basado en pila en magentproc.exe para Hewlett-Packard Mercury LoadRunner Agent 8.0 y 8.1, Performance Center Agent 8.0 y 8.1, y Monitor sobre el Firewall 8.1 permite a atacantes remotos ejecutar código de su elección a través de un paquete con un campo server_ip_name en el puerto TCP 54345, lo cual dispara el desbordamiento en mchan.dll.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Mercury LoadRunner Agent, Mercury Performance Center Agent and Mercury Monitor over Firewall. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the process magentproc.exe that binds to TCP port 54345. When parsing packets containing an overly long 'server_ip_name' field, an exploitable stack overflow may be triggered due to an an inline strcpy() within the library mchan.dll.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-01-23 CVE Reserved
- 2007-02-08 CVE Published
- 2023-11-05 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (13)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/33132 | Vdb Entry | |
| http://secunia.com/advisories/24112 | Third Party Advisory | |
| http://securitytracker.com/id?1017611 | Vdb Entry | |
| http://securitytracker.com/id?1017612 | Vdb Entry | |
| http://securitytracker.com/id?1017613 | Vdb Entry | |
| http://www.ciac.org/ciac/bulletins/r-123.shtml | Government Resource | |
| http://www.kb.cert.org/vuls/id/303012 | Third Party Advisory |
|
| http://www.securityfocus.com/archive/1/459505/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/22487 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2007/0535 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/32390 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00854250 | 2018-10-16 | |
| http://www.zerodayinitiative.com/advisories/ZDI-07-007.html | 2018-10-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Mercury Loadrunner Agent Search vendor "Hp" for product "Mercury Loadrunner Agent" | 8.0 Search vendor "Hp" for product "Mercury Loadrunner Agent" and version "8.0" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Mercury Loadrunner Agent Search vendor "Hp" for product "Mercury Loadrunner Agent" | 8.1 Search vendor "Hp" for product "Mercury Loadrunner Agent" and version "8.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Mercury Monitor Over Firewall Search vendor "Hp" for product "Mercury Monitor Over Firewall" | 8.1 Search vendor "Hp" for product "Mercury Monitor Over Firewall" and version "8.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Mercury Performance Center Agent Search vendor "Hp" for product "Mercury Performance Center Agent" | 8.0 Search vendor "Hp" for product "Mercury Performance Center Agent" and version "8.0" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Mercury Performance Center Agent Search vendor "Hp" for product "Mercury Performance Center Agent" | 8.1 Search vendor "Hp" for product "Mercury Performance Center Agent" and version "8.1" | - |
Affected
| ||||||