Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4560


Vulnerability Score 7.8 7.8
CVE Id CVE-2008-4560
Last Modified 09 Feb 2009 12:00:00
Published 08 Feb 2009 04:30:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to obtain sensitive information via (1) a crafted request to the nnmRptConfig.exe CGI program, which reveals the pathname of log directories; or (2) a crafted parameter in a request to the ovlaunch.exe CGI program, which reveals configuration details. NOTE: this issue may be partially covered by CVE-2009-0205.

Vulnerable Systems


  • Hp Openview Network Node Manager 7.0.1

  • Hp Openview Network Node Manager 7.51

  • Hp Openview Network Node Manager 7.53


HP - HPSBMA02406

IDEFENSE - 20090206 HP Network Node Manager Multiple Information Disclosure Vulnerabilities

Last Updated: 27 May 2016 10:48:32