VUPEN Security Research - HP OpenView Network Node Manager "nnmrptconfig.exe" Buffer Overflow (CVE-2010-2703)

VUPEN Security Research - HP OpenView Network Node Manager "nnmrptconfig.exe" Buffer Overflow CVE-2010-2703 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "HP OpenView Network Node Manager is the market-leading network management solution that enables problem...

HP OpenView NNM getnnmdata.exe CGI MaxAge Parameter Buffer Overflow (CVE-2010-1553)

The Network Node Manager NNM is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running over the network. A buffer overflow vulnerability exists in HP OpenView Network Node Manag...

VUPEN Security Research - HP OpenView Network Node Manager "ov.dll" Buffer Overflow Vulnerability (CVE-2010-2704)

VUPEN Security Research - HP OpenView Network Node Manager "ov.dll" Buffer Overflow Vulnerability CVE-2010-2704 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "HP OpenView Network Node Manager is the market-leading network management solution that enables problem...

HP OpenView Network Node Manager netmon.exe Stack Buffer Overflow (CVE-2010-1551; CVE-2010-2703)

The Network Node Manager NNM is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running over the network. A stack buffer overflow vulnerability exists in HP OpenView Network Node...

[security bulletin] HPSBMA02557 SSRT100025 rev.1- HP OpenView Network Node Manager (OV NNM) Running on Windows, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02286088 Version: 1 HPSBMA02557 SSRT100025 rev.1- HP OpenView Network Node Manager OV NNM Running on Windows, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin...

[security bulletin] HPSBMA02558 SSRT010158 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02290344 Version: 1 HPSBMA02558 SSRT010158 rev.1 - HP OpenView Network Node Manager OV NNM, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted up...

ZDI-10-137: Hewlett-Packard OpenView NNM webappmon.exe execvp_nc Remote Code Execution Vulnerability

ZDI-10-137: Hewlett-Packard OpenView NNM webappmon.exe execvpnc Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-137 July 21, 2010 -- CVE ID: CVE-2010-2703 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...

Hewlett-Packard OpenView NNM webappmon.exe execvp_nc Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ov.dll module which is loaded by the webappmon.exe C...

HP-UX PHSS_39886 : HP OpenView SNMP Emanate Master Agent Remote Unauthorized Access (HPSBMA02439 SSRT080082 rev.3)

s700800 11.X OV EMANATE15.3 PA-RISC Consolidated Patch 6 : A potential vulnerability has been identified with HP OpenView SNMP Emanate Master Agent Running on HP-UX, Linux, Solaris, and Windows. The vulnerability could be exploited remotely to gain unauthorized access. %NASLMINLEVEL 70300 C Tenab...

HP-UX PHSS_39887 : HP OpenView SNMP Emanate Master Agent Remote Unauthorized Access (HPSBMA02439 SSRT080082 rev.3)

s700800 11.X OV EMANATE15.3 IA-64 Consolidated Patch 6 : A potential vulnerability has been identified with HP OpenView SNMP Emanate Master Agent Running on HP-UX, Linux, Solaris, and Windows. The vulnerability could be exploited remotely to gain unauthorized access. %NASLMINLEVEL 70300 C Tenable...

HP OpenView网络节点管理器ovwebsnmpsrv.exe远程溢出漏洞

BUGTRAQ ID: 40873 CVE ID: CVE-2010-1964 HP OpenView网络节点管理器（OV NNM）是HP公司开发和维护的网络管理系统软件，具有强大的网络节点管理功能。 OpenView网络节点管理器中可通过jovgraph.exe CGI程序到达的ovwebsnmpsrv.exe服务进程中存在缓冲区溢出漏洞。如果远程用户通过HTTP请求向变量传送了超大值，则main函数中的strcpy调用就可能溢出静态缓冲区，导致以运行webserver用户的权限执行任意代码。 HP OpenView Network Node Manager 7.53 HP...

HP OpenView Network Node Manager (OV NNM) 7.53 - ovwebsnmpsrv.exe Local Buffer Overflow (SEH)

HP OpenView Network Node Manager OV NNM 7.53 - ovwebsnmpsrv.exe Local Buffer Overflow SEH Exploit Title: HP NNM 7.53 ovwebsnmpsrv.exe Buffer Overflow SEH Date: 07/06/2010 Author: bitform Software Link: hp.com Version: 7.53 Tested on: Windows XP SP2 CVE: CVE-2010-1964 Exploit: C:\Program Files\HP...

HP OpenView Network Node Manager (OV NNM) 7.53 - 'ovwebsnmpsrv.exe' Local Buffer Overflow (SEH)

Exploit Title: HP NNM 7.53 ovwebsnmpsrv.exe Buffer Overflow SEH Date: 07/06/2010 Author: bitform Software Link: hp.com Version: 7.53 Tested on: Windows XP SP2 CVE: CVE-2010-1964 Exploit: C:\Program Files\HP OpenView\www\bin\ovwebsnmpsrv.exe -dump...

HP OpenView Network Node Manager (OV NNM) - 'connectedNodes.ovp'l Remote Command Execution (Metasploit)

$Id: openviewconnectednodesexec.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution

Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE: CVE-2010-1553 Code : !/usr/bin/python import struct import socket import httplib import urllib calc.exe...

HP OpenView NNM getnnmdata.exe CGI Invalid Hostname Remote Code Execution

Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid Hostname Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE: CVE-2010-1555 Code : !/usr/bin/python import struct import socket import httplib import urllib eh =...

HP OpenView NNM getnnmdata.exe CGI Invalid ICount Remote Code Execution

Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid ICount Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE: CVE-2010-1554 Code : !/usr/bin/python import struct import socket import httplib import urllib calc.exe...

HP OpenView Network Node Manager (OV NNM) - 'getnnmdata.exe' CGI Invalid MaxAge Remote Code Execution

Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE: CVE-2010-1553 Code : !/usr/bin/python import struct import socket import httplib import urllib calc.exe...

HP OpenView Network Node Manager (OV NNM) - getnnmdata.exe CGI Invalid MaxAge Remote Code Execution

HP OpenView Network Node Manager OV NNM - getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE:...

HP OpenView Network Node Manager (OV NNM) - getnnmdata.exe CGI Invalid ICount Remote Code Execution

HP OpenView Network Node Manager OV NNM - getnnmdata.exe CGI Invalid ICount Remote Code Execution Exploit Title: HP OpenView NNM getnnmdata.exe CGI Invalid ICount Remote Code Execution Date: 2010.07.02 Author: S2 Crew Hungary Software Link: hp.com Version: 7.53 Tested on: Windows 2003 CVE:...