HP OpenView Network Node Manager Multiple Scripts hostname Parameter Remote Command Execution

The remote version of HP OpenView Network Node Manager fails to sanitize user-supplied input to the 'hostname' parameter used in the 'setMon.ovpl', 'setNotMon.ovpl', and 'ifMgrp.ovpl' scripts before using it to run a command. By leveraging these flaws, an unauthenticated, remote attacker may be...

HP-UX PHSS_40375 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 25

s700800 11.X OV NNM7.53 IA-64 Intermediate Patch 25 : The remote HP-UX host is affected by multiple vulnerabilities : - Potential security vulnerabilities have been identified with the Java Runtime Environment JRE and Java Developer Kit JDK delivered with HP OpenView Network Node Manager OV NNM...

HP OpenView Network Node Manager Snmp.exe CGI Buffer Overflow

This module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.50. By sending a specially crafted CGI request to Snmp.exe, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...

HP OpenView Network Node Manager (OV NNM) 7.53 - ovalarm.exe CGI Remote Buffer Overflow

HP OpenView Network Node Manager OV NNM 7.53 - ovalarm.exe CGI Remote Buffer Overflow !/usr/bin/python HP NNP ovalarm.exe CGI Remote Buffer Overflow - Pre Authentication Tested on XP SP3 + IIS + NNM Release B.07.50 Authors: muts & sinn3r x90.sinner a.t gmail.c0m Reference:...

HP OpenView Network Node Manager (OV NNM) 7.53 - 'ovalarm.exe' CGI Remote Buffer Overflow

!/usr/bin/python HP NNP ovalarm.exe CGI Remote Buffer Overflow - Pre Authentication Tested on XP SP3 + IIS + NNM Release B.07.50 Authors: muts & sinn3r x90.sinner a.t gmail.c0m Reference: http://dvlabs.tippingpoint.com/advisory/TPTI-09-12...

CVE-2009-0898

Stack-based buffer overflow in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted HTTP request...

Stack overflow

Stack-based buffer overflow in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted HTTP request...

CVE-2009-0898

Stack-based buffer overflow in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted HTTP request...

CVE-2009-0898

CVE-2009-0898 is a stack-based buffer overflow in HP OpenView Network Node Manager (OV NNM) versions 7.01, 7.51, and 7.53 that allows remote code execution via a crafted HTTP request. The vulnerability affects OV NNM running on HP-UX, Linux, Solaris, and Windows, with the impact described as remo...

Stack overflow

Stack-based buffer overflow in ovalarm.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Accept-Language header in an OVABverbose action...

Stack overflow

Stack-based buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long Template parameter, related to the vsprintf function...

CVE-2009-4177

Buffer overflow in webappmon.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header...

CVE-2009-3849

Multiple stack-based buffer overflows in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via 1 a long Template parameter to nnmRptConfig.exe, related to the strcat function; or 2 a long Oid parameter to snmp.exe...

CVE-2009-3847

Unspecified vulnerability in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via unknown vectors...

Heap overflow

Heap-based buffer overflow in OvWebHelp.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long Topic parameter...

Stack overflow

Stack-based buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via vectors involving the sel and arg parameters to jovgraph.exe...

Stack overflow

Multiple stack-based buffer overflows in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via 1 a long Template parameter to nnmRptConfig.exe, related to the strcat function; or 2 a long Oid parameter to snmp.exe...

Buffer overflow

Buffer overflow in webappmon.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header...

CVE-2009-4179

Stack-based buffer overflow in ovalarm.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Accept-Language header in an OVABverbose action...

Design/Logic Flaw

The port-3443 HTTP server in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostname parameter to unspecified Perl scripts...