Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0067

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0067
Last Modified 21 Sep 2011 10:48:46
Published 08 Jan 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0067

Summary

Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) long string parameters to the OpenView5.exe CGI program; (2) a long string parameter to the OpenView5.exe CGI program, related to ov.dll; or a long string parameter to the (3) getcvdata.exe, (4) ovlaunch.exe, or (5) Toolbar.exe CGI program.

Vulnerable Systems

Application

  • Hp Openview Network Node Manager 7.51


References

BID - 33147

BUGTRAQ - 20090107 Secunia Research: HP OpenView Network Node Manager Multiple Vulnerabilities

SECTRACK - 1021521

SREASON - 8307

SREASON - 4885

MISC - http://secunia.com/secunia_research/2008-13/

SECUNIA - 28074

HP - SSRT080144

HP - HPSBMA02400


Last Updated: 27 May 2016 10:49:56