1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: HP LoadRunner EmulationAdmin CVE-2013-4837

Web Attack: HP LoadRunner EmulationAdmin CVE-2013-4837

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt of leveraging a directory traversal vulnerability in HP LoadRunner Virtual User Generator which could result in remote code execution.

Additional Information

HP LoadRunner is a tool for testing system performance.

HP LoadRunner is prone to a remote code-execution vulnerability due to an error in the HP LoadRunner Virtual User Generator. Specifically, the issue exists in the handling of requests to the 'EmulationAdmin' web service that exposes the 'copyFileToServer()' method. This may trigger a directory traversal issue and allow an attacker to create files at arbitrary locations.

Attackers can exploit this issue to execute arbitrary code in the context of the affected application.

Affected

  • Versions prior to HP LoadRunner 11.52.1 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube