HP Openview Network Node Manager Ovalarmsrv buffer overflow

Added: 04/18/2008 CVE: CVE-2008-3544 BID: 28668 OSVDB: 50076 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A buffer overflow vulnerability in the Ovalarmsrv service in Network Node Manager allows remote attackers to execute...

HP Openview Network Node Manager Ovalarmsrv buffer overflow

Added: 04/18/2008 CVE: CVE-2008-3544 BID: 28668 OSVDB: 50076 Background HP OpenView Network Node Manager is network availability and performance management software. Problem A buffer overflow vulnerability in the Ovalarmsrv service in Network Node Manager allows remote attackers to execute...

Code injection

ovalarmsrv in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service hang via certain requests that do not provide all required arguments...

CVE-2008-1853

The ovtopmd service in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service exit by sending a 0x36 packet exit request...

CVE-2008-0068

Directory traversal vulnerability in OpenView5.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter...

Cross site request forgery (csrf)

The ovtopmd service in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service exit by sending a 0x36 packet exit request...

CVE-2008-1851

ovalarmsrv in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service hang via certain requests that do not provide all required arguments...

Directory traversal

Directory traversal vulnerability in OpenView5.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter...

CVE-2008-1852

ovalarmsrv in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service crash via certain requests that specify a large number of sub-arguments, which triggers a NULL pointer dereference due to memory allocation failure...

CVE-2008-0068

Directory traversal vulnerability in OpenView5.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter...

CVE-2008-1852

HP OpenView Network Node Manager (OV NNM) affected: ovalarmsrv in versions 7.51 and 7.53 (and possibly others) is vulnerable to remote DoS. A request that specifies a large number of sub-arguments can trigger a NULL pointer dereference due to memory allocation failure, leading to a crash. The pro...

CVE-2008-1852

ovalarmsrv in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service crash via certain requests that specify a large number of sub-arguments, which triggers a NULL pointer dereference due to memory allocation failure...

CVE-2008-1853

The ovtopmd service in HP OpenView Network Node Manager OV NNM 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service exit by sending a 0x36 packet exit request...

CVE-2008-0068

CVE-2008-0068 describes a directory traversal vulnerability in HP OpenView Network Node Manager (OV NNM) OpenView5.exe, affecting OV NNM versions 7.01, 7.51, and 7.53. The vulnerability allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter. HP’s...

CVE-2008-1853

CVE-2008-1853 affects the HP OpenView Network Node Manager (OV NNM) product line. The vulnerability is in the ovtopmd service for OV NNM versions 7.51, 7.53, and possibly other versions, where remote attackers can cause a denial of service by sending a 0x36 packet (exit request). The NVD entry li...

CVE-2008-1842

Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager OV NNM 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service daemon crash or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a...

Secunia Research: HP OpenView Network Node Manager OpenView5.exe Directory Traversal

====================================================================== Secunia Research 14/04/2008 - HP OpenView Network Node Manager OpenView5.exe Directory Traversal - ====================================================================== Table of Contents Affected...

HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : HP OpenView Network Node Manager v7.5 ---------------------------------------- Exploit : HP OpenView NNM v7.5.1 ovalarmsrv.exe Remote Buffer Overflow Exploit...

HP OpenView Network Node Manager multiple CGI buffer overflow

Buffer overflows in ovlogin.exe, OpenView5.exe, snmpviewer.exe, webappmon.exe. OpenView5.exe directory traversal...

HP OpenView Network Node Manager OpenView5.exe Action Parameter Traversal Arbitrary File Access

The version of HP OpenView Network Node Manager installed on the remote host fails to completely sanitize user input to the 'Action' parameter of the 'OpenView5.exe' CGI script. Using a value with directory traversal sequences containing slashes rather than backslashes, an unauthenticated, remote...