Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-09-097
HistoryDec 09, 2009 - 12:00 a.m.

Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

2009-12-0900:00:00
Anonymous
www.zerodayinitiative.com
21

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.967 High

EPSS

Percentile

99.6%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the nnmRptConfig.exe CGI executable accessible via the IIS web server listening by default on TCP port 80. While parsing POST variables this process copies the contents of the Template parameter into a fixed length stack buffer using a strcat call. By supplying a large enough value this buffer can be overflowed leading to arbitrary code execution.

Related

checkpoint_advisories 2
securityvulns 4
d2 1
prion 1
packetstorm 1
zdi 1
cve 1
seebug 1
nessus 3
checkpoint_advisories
checkpoint_advisories
HP OpenView Network Node Manager snmp.exe Oid Variable Buffer Overflow (CVE-2009-3849)
2010-02-02 00:00:00
Preemptive Protection against HP OpenView Network Node Manager snmp.exe Oid Variable Buffer Overflow Vulnerability
2010-01-06 00:00:00
securityvulns
securityvulns
ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability
2009-12-09 00:00:00
ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability
2009-12-09 00:00:00
HP OpenView NNM multiple security vulnerabilities
2009-12-10 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_HPNNM3
2009-12-10 22:30:00
prion
prion
Stack overflow
2009-12-10 22:30:00
packetstorm
packetstorm
HP OpenView Network Node Manager Snmp.exe CGI Buffer Overflow
2009-12-31 00:00:00
zdi
zdi
Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability
2009-12-09 00:00:00
cve
cve
CVE-2009-3849
2009-12-10 22:30:00
seebug
seebug
HP OpenView Network Node Manager多个远程代码执行漏洞
2009-12-14 00:00:00
nessus
nessus
HP-UX PHSS_40705 : s700_800 11.11 OV NNM7.01 Intermediate Patch 13
2010-05-10 00:00:00
HP-UX PHSS_40374 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 25
2009-12-14 00:00:00
HP-UX PHSS_40375 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 25
2009-12-14 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.967 High

EPSS

Percentile

99.6%

JSON
Related for ZDI-09-097
checkpoint_advisories2securityvulns4d21prion1packetstorm1zdi1cve1seebug1nessus3