May 20, 2015 HP released a fix for the stack buffer overflow vulnerability in HP LoadRunner 11.52. A potential security issue has been identified in HP LoadRunner 11.52 where the hacker can use LoadRunner agent to connect LG machines and execute malicious files. Then, the hacker can use the LG to perform malicious operations.
- Go to https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsearch/document/KM01566261/555054e2002f909581606398/two_way_comm.dll
- Save the DLL file
- Replace the DLL file in the following places:
- Above DLLs should be copied in wherever LoadRunner is installed such as Controller, Load Generator and MI Listener.
This vulnerability has been fixed already in HP LoadRunner 12.00 and above.
If you like my article, please do share in your favorite social media. Please do not forget to subscribe to my weekly newsletter, it is FREE.