831 matches found
CVE-2016-2012
CVE-2016-2012 affects HPE Network Node Manager i (NNMi) software. Affected versions include 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01. The vulnerability is an authentication bypass allowing remote attackers to bypass authentication via unspecified vectors. Several connected sources (NVD, CNVD) con...
CVE-2016-2010
Summary: CVE-2016-2010 is a cross-site scripting (XSS) vulnerability in HPE Network Node Manager i (NNMi). The issue affects NNMi versions 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 and could allow a remote authenticated user to inject arbitrary web script or HTML via unspecified vectors. The conne...
CVE-2016-2010
Cross-site scripting XSS vulnerability in HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2011...
CVE-2016-2013
HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2016-2009
HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections ACC library...
CVE-2016-2011
Cross-site scripting XSS vulnerability in HPE Network Node Manager i NNMi 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2016-2010...
HP OpenView Network Node Manager Accept-Language Buffer Overflow - Ver2 (CVE-2009-4179)
A stack buffer overflow exists in HP OpenView Network Node Manager NNM CGI program ovalarm.exe. The vulnerability is due to a boundary error when processing the Accept-Language HTTP header and the OvAcceptLang cookie value in a crafted HTTP request. A remote unauthenticated attacker can exploit...
Multiple Vulnerabilities in JP1/Cm2/Network Node Manager i
Overview JP1/Cm2/Network Node Manager i contains cross-site scripting and execution of arbitrary code vulnerabilities. Impact An attacker could inject arbitrary web script and execute arbitrary code. Solution Please refer to the 'Vendor Information' section for the official countermeasure and tak...
HP Network Node Manager i Remote Code Execution (HPSBMU03075)
The version of HP Network Node Manager i NNMi installed on the remote host is a version that is potentially affected by a remote code execution vulnerability. Note that Nessus did not check for the presence of a patch or workaround for this issue. C Tenable Network Security, Inc...
HP Network Node Manager i (NNMi) XSS (HPSBMU03035)
The version of HP Network Node Manager i NNMi installed on the remote host is a version that is potentially affected by an XSS vulnerability. Note that Nessus did not check for the presence of a patch. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid79800;...
HP Network Node Manager i (NNMi) XSS (HPSBMU03035)
The version of HP Network Node Manager i NNMi installed on the remote host is a version that is potentially affected by an XSS vulnerability. Note that Nessus did not check for the presence of a patch. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid79799;...
HP Network Node Manager i (NNMi) 8.x / 9.0x / 9.1x / 9.20 Unspecified XSS
According to its version number, the web interface for HP Network Node Manager i NNMi installed on the remote host is affected by an unspecified cross-site scripting vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid79798; scriptversion"1.4";...
HPE Network Node Manager i (NNMi) Linux Detection (credentialed check)
HPE Network Node Manager i NNMi is installed on the remote Linux host. NNMi is a component of HPE Automated Network Management Suite. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid79802; scriptversion"1.11"; scriptsetattributeattribute:"pluginmodificationdate",...
HP Network Node Manager I ovopi.dll Command 685 Memory Corruption (CVE-2014-2624)
A memory corruption vulnerability in HP Network Node Manager I NNMi ha been reported. The vulnerability is caused by using remotely supplied data as a pointer without sufficient validation in ovopi.dll. By sending a crafted request to the vulnerable product on port 696/UDP, a remote unauthenticat...
HP Network Node Manager I ovopi.dll Buffer Overflow (CVE-2014-2624)
Multiple buffer overflow vulnerabilities exist in HP Network Node Manager I NNMi. These vulnerabilities are caused by copying user supplied data into stack-based buffers without sufficient validation in ovopi.dll. By sending a crafted request to the vulnerable product on port 696/UDP, a remote...
HP Network Node Manager I PMD Buffer Overflow
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::Udp def initializeinfo =...
HP Network Node Manager I - PMD Buffer Overflow (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Network Node Manager I PMD Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in HP Network Node...
HP Network Node Manager I PMD Buffer Overflow Exploit
Exploit for linux platform in category remote exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Network Node Manager I PMD Buffer Overflow', 'Description' = %q This module...
Hewlett-Packard Network Node Manager ovopi.dll Option -T Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ovopi.dll which listens by default on a UDP port 696. When parsin...
Hewlett-Packard Network Node Manager ovopi.dll Option -L Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ovopi.dll which listens by default on a UDP port 696. When parsin...