Lucene search

PRIOn knowledge basePRION:CVE-2009-3845

HistoryDec 10, 2009 - 10:30 p.m.

Design/Logic Flaw

2009-12-1022:30:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.035 Low

EPSS

Percentile

91.3%

JSON

The port-3443 HTTP server in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostname parameter to unspecified Perl scripts.

CPENameOperatorVersion
openview_network_node_managereq7.53 solaris
openview_network_node_managereq7.53 windows
openview_network_node_managereq7.0.1 hp-ux
openview_network_node_managereq7.51 solaris
openview_network_node_managereq7.51 windows
openview_network_node_managereq7.0.1 linux
openview_network_node_managereq7.0.1 solaris
openview_network_node_managereq7.53
openview_network_node_managereq7.51
openview_network_node_managereq7.53 linux

Name	Operator	Version
openview_network_node_manager	eq	7.53 solaris
openview_network_node_manager	eq	7.53 windows
openview_network_node_manager	eq	7.0.1 hp-ux
openview_network_node_manager	eq	7.51 solaris
openview_network_node_manager	eq	7.51 windows
openview_network_node_manager	eq	7.0.1 linux
openview_network_node_manager	eq	7.0.1 solaris
openview_network_node_manager	eq	7.53
openview_network_node_manager	eq	7.51
openview_network_node_manager	eq	7.53 linux

Rows per page:

1-10 of 121

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877

www.securityfocus.com/archive/1/508345/100/0/threaded

www.securityfocus.com/bid/37261

www.securityfocus.com/bid/37300

zerodayinitiative.com/advisories/ZDI-09-094/

exchange.xforce.ibmcloud.com/vulnerabilities/54651

marc.info/?l=bugtraq&m=126046355120442&w=2

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.035 Low

EPSS

Percentile

91.3%

JSON

Related for PRION:CVE-2009-3845