SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER HP LoadRunner remote command execution attempt
This event is generated when an unauthenticated user attempts to execute code on HP LoadRunner. Impact: Administrative access to the victim's machine Details: Rule checks for an attempt to execute remote code on a system running HP LoadRunner on port 54345 with Secure Channel disabled. Ease of Attack: Simple; Metasploit module available
No information provided
No public information
Known false positives, with the described conditions
The application contains a "vulnerable by design" feature that allows users to execute remote code, so it is possible for legitimate traffic to also be caught by this detection.
Cisco Talos Intelligence Group
No rule groups
CVE-2010-1549 |
Loading description
|