Lucene search

PRIOn knowledge basePRION:CVE-2007-6204

HistoryDec 13, 2007 - 9:46 p.m.

Stack overflow

2007-12-1321:46:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.63 Medium

EPSS

Percentile

97.7%

JSON

Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.exe, (2) OpenView5.exe, (3) snmpviewer.exe, and (4) webappmon.exe, as demonstrated via a long Action parameter to OpenView5.exe.

CPENameOperatorVersion
openview_network_node_managereq7.51
openview_network_node_managereq6.41
openview_network_node_managereq7.0.1

Name	Operator	Version
openview_network_node_manager	eq	7.51
openview_network_node_manager	eq	6.41
openview_network_node_manager	eq	7.0.1

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923

secunia.com/advisories/27964

securityreason.com/securityalert/3441

www.securityfocus.com/archive/1/484704/100/0/threaded

www.securityfocus.com/bid/26741

www.securitytracker.com/id?1019055

www.vupen.com/english/advisories/2007/4111

www.zerodayinitiative.com/advisories/ZDI-07-071.html

exchange.xforce.ibmcloud.com/vulnerabilities/38892

www.exploit-db.com/exploits/4724

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.63 Medium

EPSS

Percentile

97.7%

JSON

Related for PRION:CVE-2007-6204