CVE-2010-4028 - OpenCVE

Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Hp	Loadrunner Web Tours Loadrunner

Configuration 1 [-]

AND

cpe:2.3:a:hp:loadrunner_web_tours:9.10:*:*:*:*:*:*:*

OR	cpe:2.3:a:hp:loadrunner::::::::
	cpe:2.3:a:hp:loadrunner:7.0:::::::*
	cpe:2.3:a:hp:loadrunner:7.02:::::::*
	cpe:2.3:a:hp:loadrunner:7.5:::::::*
	cpe:2.3:a:hp:loadrunner:7.6:::::::*
	cpe:2.3:a:hp:loadrunner:7.8:::::::*
	cpe:2.3:a:hp:loadrunner:7.51:::::::*
	cpe:2.3:a:hp:loadrunner:8.0:::::::*
	cpe:2.3:a:hp:loadrunner:8.12:::::::*
	cpe:2.3:a:hp:loadrunner:8.13:::::::*
	cpe:2.3:a:hp:loadrunner:8.14:::::::*
	cpe:2.3:a:hp:loadrunner:9.0:::::::*

References

Link	Resource
http://marc.info/?l=bugtraq&m=128821242731749&w=2	Vendor Advisory
http://www.securitytracker.com/id?1024657

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hp

Published: 2010-10-28T19:00:00

Updated: 2010-11-11T10:00:00

Reserved: 2010-10-21T00:00:00

Link: CVE-2010-4028

JSON object: View

NVD Information

Status : Modified

Published: 2010-10-28T20:00:03.280

Modified: 2010-11-11T06:50:54.127

Link: CVE-2010-4028

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-10-26T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2010-11-11T10:00:00", "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp"}, "references": [{"name": "HPSBMA02533", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=128821242731749&w=2"}, {"name": "SSRT080049", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=128821242731749&w=2"}, {"name": "1024657", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1024657"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "hp-security-alert@hp.com", "ID": "CVE-2010-4028", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "HPSBMA02533", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=128821242731749&w=2"}, {"name": "SSRT080049", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=128821242731749&w=2"}, {"name": "1024657", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1024657"}]}}}}, "cveMetadata": {"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "assignerShortName": "hp", "cveId": "CVE-2010-4028", "datePublished": "2010-10-28T19:00:00", "dateReserved": "2010-10-21T00:00:00", "dateUpdated": "2010-11-11T10:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hp:loadrunner_web_tours:9.10:*:*:*:*:*:*:*", "matchCriteriaId": "C2930314-CA86-4ABA-B56F-27FF3DD72C70", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:hp:loadrunner:*:*:*:*:*:*:*:*", "matchCriteriaId": "830D72C6-86BC-40AC-A02E-DD932CBD24CD", "versionEndIncluding": "9.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "30344845-9DAE-4E51-8E27-6B650A4EE126", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.02:*:*:*:*:*:*:*", "matchCriteriaId": "B37BBFD8-81BE-4F9C-A0A5-0BEC7FA46A8D", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.5:*:*:*:*:*:*:*", "matchCriteriaId": "476FC1E3-5BD5-4271-92FB-F017AD0CA5D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.6:*:*:*:*:*:*:*", "matchCriteriaId": "09133BB4-E5EB-4084-BDA4-39732EC74DC2", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.8:*:*:*:*:*:*:*", "matchCriteriaId": "7DD409D2-9A27-46C5-8368-D530A8155BB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:7.51:*:*:*:*:*:*:*", "matchCriteriaId": "B05A91C3-0B55-4DE3-B9FD-0CCE06545360", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C6792A07-8328-439E-BBF2-140B18A1D4E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:8.12:*:*:*:*:*:*:*", "matchCriteriaId": "38BCA1BE-9D4C-4381-A2FC-36181A17787F", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:8.13:*:*:*:*:*:*:*", "matchCriteriaId": "D59A2E8F-ED38-475E-9FAB-1B445C2ED141", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:8.14:*:*:*:*:*:*:*", "matchCriteriaId": "6B18ACBD-11AA-4020-8D2E-B8C07DFA3D89", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:loadrunner:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "8348EAB4-C5F8-49C6-8671-2F1002BBF4AF", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en LoadRunner Web Tours v9.10 en HP LoadRunner v9.1 y anteriores permite a los atacantes remotos causar una denegaci\u00f3n de servicio, y posiblemente obtener informaci\u00f3n sensible o modificar datos, a trav\u00e9s de vectores desconocidos."}], "id": "CVE-2010-4028", "lastModified": "2010-11-11T06:50:54.127", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2010-10-28T20:00:03.280", "references": [{"source": "hp-security-alert@hp.com", "tags": ["Vendor Advisory"], "url": "http://marc.info/?l=bugtraq&m=128821242731749&w=2"}, {"source": "hp-security-alert@hp.com", "url": "http://www.securitytracker.com/id?1024657"}], "sourceIdentifier": "hp-security-alert@hp.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}