CVE-2008-0067

Loading...

General

Score:10.0/10.0
Severity:High
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 08/01/09 - Updated on 15/10/18

Description

Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) long string parameters to the OpenView5.exe CGI program; (2) a long string parameter to the OpenView5.exe CGI program, related to ov.dll; or a long string parameter to the (3) getcvdata.exe, (4) ovlaunch.exe, or (5) Toolbar.exe CGI program.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2008-0067
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2009-AVI-027

Exploits

Exploit-DBEDB-16795
SecurityFocusBID-33147

Relative technologies

VendorProduct
hpopenview_network_node_manager

Share this vulnerability with:

Twitter Facebook LinkedIn Mail