Lucene search

SAINT CorporationSAINT:30F861037342E15E3F67F8142077E3AB

HistoryApr 18, 2008 - 12:00 a.m.

HP Openview Network Node Manager Ovalarmsrv buffer overflow

2008-04-1800:00:00

SAINT Corporation

my.saintcorporation.com

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.406 Medium

EPSS

Percentile

97.2%

JSON

Added: 04/18/2008
CVE: CVE-2008-3544
BID: 28668
OSVDB: 50076

Background

HP OpenView Network Node Manager is network availability and performance management software.

Problem

A buffer overflow vulnerability in the Ovalarmsrv service in Network Node Manager allows remote attackers to execute arbitrary commands.

Resolution

Apply the appropriate patch.

References

<http://aluigi.altervista.org/adv/closedview_old-adv.txt>

Limitations

Exploit works on HP OpenView Network Node Manager 7.50 for Windows and HP OpenView Network Node Manager 7.01 for Linux.

Platforms

Windows 2000
Windows Server 2003
Linux

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.406 Medium

EPSS

Percentile

97.2%

JSON

Related for SAINT:30F861037342E15E3F67F8142077E3AB