33 matches found
ZDI-10-137: Hewlett-Packard OpenView NNM webappmon.exe execvp_nc Remote Code Execution Vulnerability
ZDI-10-137: Hewlett-Packard OpenView NNM webappmon.exe execvpnc Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-137 July 21, 2010 -- CVE ID: CVE-2010-2703 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...
Hewlett-Packard OpenView NNM webappmon.exe execvp_nc Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ov.dll module which is loaded by the webappmon.exe C...
HP OpenView NNM netmon sel CGI Variable Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Network Monitor netmon.exe daemon. This process can be started by invoking...
Preemptive Protection against HP OpenView Network Node Manager webappmon.exe CGI Host Header Buffer Overflow
A buffer overflow vulnerability exists in the HP OpenView Network Node Manager NNM CGI program webappmon.exe. The vulnerability is due to a boundary error when processing the Host header from HTTP requests. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP...
CVE-2009-4177
Buffer overflow in webappmon.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header...
Buffer overflow
Buffer overflow in webappmon.exe in HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header...
Stack overflow
Stack-based buffer overflow in rping in HP OpenView Network Node Manager OV NNM 7.53 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, possibly involving a CGI request to webappmon.exe. NOTE: this may overlap CVE-2009-1420...
HP OpenView Network Node Manager webappmon.exe Command Injection (c01661610)
The 'webappmon.exe' CGI script included with the version of HP OpenView Network Node Manager installed on the remote host fails to sanitize user input of shell metacharacters before using it to execute external programs. An unauthenticated, remote attacker can leverage this issue to run arbitrary...
Design/Logic Flaw
HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the 1 webappmon.exe or 2 OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205...
CVE-2008-4559
HP OpenView Network Node Manager OV NNM 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the 1 webappmon.exe or 2 OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205...
CVE-2008-4559
HP OpenView Network Node Manager (OV NNM) versions 7.01, 7.51, and 7.53 are affected by CVE-2008-4559. The issue allows remote code execution via shell metacharacters in argument fields passed to the CGI programs webappmon.exe or OpenView5.exe. This is a remote, unauthenticated vector that could ...
HP OpenView Network Node Manager multiple CGI buffer overflow
Buffer overflows in ovlogin.exe, OpenView5.exe, snmpviewer.exe, webappmon.exe. OpenView5.exe directory traversal...
CVE-2007-6204
Multiple stack-based buffer overflows in HP OpenView Network Node Manager OV NNM 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to 1 ovlogin.exe, 2 OpenView5.exe, 3 snmpviewer.exe, and 4 webappmon.exe, as demonstrated via a long Action paramet...