PRIOn knowledge basePRION:CVE-2009-1420

HistoryJun 11, 2009 - 3:30 p.m.

Stack overflow

2009-06-1115:30:00

PRIOn knowledge base

www.prio-n.com

8.4 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.75 High

EPSS

Percentile

98.1%

JSON

Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.

CPENameOperatorVersion
openview_network_node_managereq7.51 solaris
openview_network_node_managereq7.51 windows
openview_network_node_managereq7.51
openview_network_node_managereq7.51 linux
openview_network_node_managereq7.53 linux
openview_network_node_managereq7.53
openview_network_node_managereq7.53 solaris
openview_network_node_managereq7.53 windows

Name	Operator	Version
openview_network_node_manager	eq	7.51 solaris
openview_network_node_manager	eq	7.51 windows
openview_network_node_manager	eq	7.51
openview_network_node_manager	eq	7.51 linux
openview_network_node_manager	eq	7.53 linux
openview_network_node_manager	eq	7.53
openview_network_node_manager	eq	7.53 solaris
openview_network_node_manager	eq	7.53 windows

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=810

secunia.com/advisories/35408

securitytracker.com/id?1022360

www.securityfocus.com/bid/35267

www.vupen.com/english/advisories/2009/1549

marc.info/?l=bugtraq&m=124457320614552&w=2

8.4 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.75 High

EPSS

Percentile

98.1%

JSON

Related for PRION:CVE-2009-1420