Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:7074703EB7CA4AF5135737763C46ACAE
HistoryAug 16, 2007 - 12:00 a.m.

HP OpenView Operations OVTrace buffer overflow

2007-08-1600:00:00
SAINT Corporation
download.saintcorporation.com
7

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.925 High

EPSS

Percentile

99.0%

JSON

Added: 08/16/2007
CVE: CVE-2007-3872
BID: 25255
OSVDB: 39527

Background

HP OpenView Operations is event management and performance monitoring software.

Problem

A buffer overflow vulnerability in HP OpenView Operations allows remote attackers to execute arbitrary commands by sending a specially crafted request to the OVTrace service.

Resolution

See TPTI-07-14 for fix information.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=574&gt;

Limitations

Exploit works on HP OpenView Internet Service (OVIS) 6.00.081.

Platforms

Windows 2000
Windows Server 2003

Related

checkpoint_advisories 1
nessus 11
cve 2
saint 3
packetstorm 1
prion 2
securityvulns 2
checkpoint_advisories
checkpoint_advisories
HP OpenView Products OVTrace Service Stack Buffer Overflow (CVE-2007-3872)
2008-04-24 00:00:00
nessus
nessus
HP-UX PHSS_35457 : HP OpenView Operations (OVO) Agents Running Shared Trace Service, Remote Arbitrary Code Execution (HPSBMA02239 SSRT061260 rev.3)
2007-11-20 00:00:00
HP-UX PHSS_37397 : HP OpenView Operations (OVO) Agents Running Shared Trace Service, Remote Arbitrary Code Execution (HPSBMA02239 SSRT061260 rev.3)
2008-01-15 00:00:00
HP-UX PHSS_37399 : HP OpenView Operations (OVO) Agents Running Shared Trace Service, Remote Arbitrary Code Execution (HPSBMA02239 SSRT061260 rev.3)
2008-01-15 00:00:00
cve
cve
CVE-2007-3872
2007-08-09 20:17:00
CVE-2009-3099
2009-09-08 18:30:00
saint
saint
HP OpenView Operations OVTrace buffer overflow
2007-08-16 00:00:00
HP OpenView Operations OVTrace buffer overflow
2007-08-16 00:00:00
HP OpenView Operations OVTrace buffer overflow
2007-08-16 00:00:00
packetstorm
packetstorm
HP OpenView Operations OVTrace Buffer Overflow
2009-11-26 00:00:00
prion
prion
Stack overflow
2007-08-09 20:17:00
Code injection
2009-09-08 18:30:00
securityvulns
securityvulns
iDefense Security Advisory 08.09.07: Hewlett-Packard OpenView Operations OVTrace Buffer Overflow Vulnerabilities
2007-08-10 00:00:00
HP OpenView Operations OVTrace buffer overflow
2007-08-29 00:00:00

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.925 High

EPSS

Percentile

99.0%

JSON
Related for SAINT:7074703EB7CA4AF5135737763C46ACAE
checkpoint_advisories1nessus11cve2saint3packetstorm1prion2securityvulns2