CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
97.6%
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.exe, (2) OpenView5.exe, (3) snmpviewer.exe, and (4) webappmon.exe, as demonstrated via a long Action parameter to OpenView5.exe.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | openview_network_node_manager | 6.41 | cpe:2.3:a:hp:openview_network_node_manager:6.41:*:*:*:*:*:*:* |
hp | openview_network_node_manager | 7.0.1 | cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:*:*:*:*:*:* |
hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:* |
h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
secunia.com/advisories/27964
securityreason.com/securityalert/3441
www.securityfocus.com/archive/1/484704/100/0/threaded
www.securityfocus.com/bid/26741
www.securitytracker.com/id?1019055
www.vupen.com/english/advisories/2007/4111
www.zerodayinitiative.com/advisories/ZDI-07-071.html
exchange.xforce.ibmcloud.com/vulnerabilities/38892
www.exploit-db.com/exploits/4724