{ "id": "CVE-2015-6857", "sourceIdentifier": "cve@mitre.org", "published": "2015-11-26T03:59:02.053", "lastModified": "2016-12-07T18:22:04.837", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in Virtual Table Server (VTS) in HP LoadRunner 11.52, 12.00, 12.01, 12.02, and 12.50 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-3138." }, { "lang": "es", "value": "Vulnerabilidad no especificada en Virtual Table Server (VTS) en HP LoadRunner 11.52, 12.00, 12.01, 12.02 y 12.50 permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de vectores desconocidos, tambi\u00e9n conocida como ZDI-CAN-3138." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 7.2 }, "baseSeverity": "HIGH", "exploitabilityScore": 3.9, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:hp:loadrunner:11.52:*:*:*:*:*:*:*", "matchCriteriaId": "D9B837F9-5DFF-4A70-B37C-884606588B75" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:loadrunner:12.00:*:*:*:*:*:*:*", "matchCriteriaId": "F7E94489-CB38-41D9-B32A-1D1604603FC1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:loadrunner:12.01:*:*:*:*:*:*:*", "matchCriteriaId": "713F0521-EAF2-461D-988F-495D4118263F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:loadrunner:12.02:*:*:*:*:*:*:*", "matchCriteriaId": "9B0F7240-AF85-44DA-BDFC-2F252FBCB70E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:loadrunner:12.50:*:*:*:*:*:*:*", "matchCriteriaId": "D1911106-CA9E-421F-94AB-27B33378129B" } ] } ] }, { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:hp:performance_center:11.52:p3:*:*:*:*:*:*", "matchCriteriaId": "4BACEBCB-93A4-4C8C-90DD-3D233BF9B128" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:performance_center:12.00:p1:*:*:*:*:*:*", "matchCriteriaId": "27EAC034-46D2-41A8-A3F5-7ABDCC7E9457" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:performance_center:12.01:p3:*:*:*:*:*:*", "matchCriteriaId": "B0DEA9F8-EF3D-4C7F-B6B9-F9A33341E9A5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:performance_center:12.20:p2:*:*:*:*:*:*", "matchCriteriaId": "F7FCF452-A5B1-4CB5-BD02-785670A04E82" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:performance_center:12.50:p1:*:*:*:*:*:*", "matchCriteriaId": "235AB949-A179-48FC-BFAA-7796578E430D" } ] } ] } ], "references": [ { "url": "http://www.securityfocus.com/bid/77946", "source": "cve@mitre.org" }, { "url": "http://www.securitytracker.com/id/1034259", "source": "cve@mitre.org" }, { "url": "http://www.zerodayinitiative.com/advisories/ZDI-15-581", "source": "cve@mitre.org" }, { "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04900820", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] }, { "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04907374", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] } ] }