Stack-based Buffer Overflow in HP LoadRunner Server (magentservice.exe) Allows Remote Code Execution

Stack-based Buffer Overflow in HP LoadRunner Server (magentservice.exe) Allows Remote Code Execution

CVE-2011-4789 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it was originally reported that the affected product is HP Diagnostics Server, but HP states that "the vulnerable product is actually HP LoadRunner."

Learn more about our Cis Benchmark Audit For Server Software.