Lucene search

[email protected]CVE-2001-0552

HistorySep 20, 2001 - 4:00 a.m.

CVE-2001-0552

2001-09-2004:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0552

hp openview nnm

tivoli netview

remote attack

arbitrary commands

snmp trap message

nvd.

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.3%

JSON

ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message.

CPENameOperatorVersion
ibm:tivoli_netviewibm tivoli netvieweq5.0
ibm:tivoli_netviewibm tivoli netvieweq6.0
hp:openview_network_node_managerhp openview network node managereq5.01
hp:openview_network_node_managerhp openview network node managereq6.1

CPE	Name	Operator	Version
ibm:tivoli_netview	ibm tivoli netview	eq	5.0
ibm:tivoli_netview	ibm tivoli netview	eq	6.0
hp:openview_network_node_manager	hp openview network node manager	eq	5.01
hp:openview_network_node_manager	hp openview network node manager	eq	6.1

References

marc.info/?l=bugtraq&m=99201278704545&w=2

www.cert.org/advisories/CA-2001-24.html

www.kb.cert.org/vuls/id/952171

www.securityfocus.com/bid/2845

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.3%

JSON

Related for CVE-2001-0552

cert1