CVE-2008-0068
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
99.6%
Directory traversal vulnerability in OpenView5.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:* |
| hp | openview_network_node_manager | 7.53 | cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:* |
References
aluigi.altervista.org/adv/closedviewx-adv.txt
marc.info/?l=bugtraq&m=121553649611253&w=2
secunia.com/advisories/29796
secunia.com/secunia_research/2008-4/advisory/
securityreason.com/securityalert/3814
www.osvdb.org/44359
www.securityfocus.com/archive/1/490771
www.securityfocus.com/archive/1/490834/100/0/threaded
www.securityfocus.com/bid/28745
www.securitytracker.com/id?1019838
www.securitytracker.com/id?1019839
www.vupen.com/english/advisories/2008/1214/references
exchange.xforce.ibmcloud.com/vulnerabilities/41790
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
99.6%