CVE-2007-0446
published 2007-02-08CVE-2007-0446: Stack-based buffer overflow in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent 8.0 and 8.1, Performance Center Agent 8.0 and 8.1, and Monitor over…
PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
44.46%
98.6th percentile
Stack-based buffer overflow in magentproc.exe for Hewlett-Packard Mercury LoadRunner Agent 8.0 and 8.1, Performance Center Agent 8.0 and 8.1, and Monitor over Firewall 8.1 allows remote attackers to execute arbitrary code via a packet with a long server_ip_name field to TCP port 54345, which triggers the overflow in mchan.dll.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | mercury_loadrunner_agent | — | — |
| hp | mercury_loadrunner_agent | — | — |
| hp | mercury_monitor_over_firewall | — | — |
| hp | mercury_performance_center_agent | — | — |
| hp | mercury_performance_center_agent | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00854250http://osvdb.org/33132http://secunia.com/advisories/24112http://securitytracker.com/id?1017611http://securitytracker.com/id?1017612http://securitytracker.com/id?1017613http://www.ciac.org/ciac/bulletins/r-123.shtmlhttp://www.kb.cert.org/vuls/id/303012http://www.securityfocus.com/archive/1/459505/100/0/threadedhttp://www.securityfocus.com/bid/22487http://www.vupen.com/english/advisories/2007/0535http://www.zerodayinitiative.com/advisories/ZDI-07-007.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/32390http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00854250http://osvdb.org/33132http://secunia.com/advisories/24112http://securitytracker.com/id?1017611http://securitytracker.com/id?1017612http://securitytracker.com/id?1017613http://www.ciac.org/ciac/bulletins/r-123.shtmlhttp://www.kb.cert.org/vuls/id/303012http://www.securityfocus.com/archive/1/459505/100/0/threadedhttp://www.securityfocus.com/bid/22487http://www.vupen.com/english/advisories/2007/0535http://www.zerodayinitiative.com/advisories/ZDI-07-007.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/32390
2007-02-08
Published