Security Advisory

CVE-2009-3693

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-10-13 10:00:00

Last updated 2024-09-16 17:32:35

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control (XUpload.ocx) in HP LoadRunner 9.5 allows remote attackers to create arbitrary files via .. (backwards slash dot dot) sequences in the third argument to the MakeHttpRequest method.

← Browse all CVEs View on cve.org ↗