Lucene search

PRIOn knowledge basePRION:CVE-2008-3544

HistoryOct 13, 2008 - 8:00 p.m.

Stack overflow

2008-10-1320:00:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.406 Medium

EPSS

Percentile

97.3%

JSON

Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.

CPENameOperatorVersion
openview_network_node_managereq7.51
openview_network_node_managereq7.01
openview_network_node_managereq7.53
openview_network_node_managereq7.50

Name	Operator	Version
openview_network_node_manager	eq	7.51
openview_network_node_manager	eq	7.01
openview_network_node_manager	eq	7.53
openview_network_node_manager	eq	7.50

References

aluigi.altervista.org/adv/closedview_old-adv.txt

downloads.securityfocus.com/vulnerabilities/exploits/28668.c

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01537275

secunia.com/advisories/31688

securityreason.com/securityalert/4397

www.securityfocus.com/archive/1/490541

www.securityfocus.com/bid/28668

7.9 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.406 Medium

EPSS

Percentile

97.3%

JSON

Related for PRION:CVE-2008-3544