Vulnerability Details CVE-2005-2773
HP OpenView Network Node Manager 6.2 through 7.50 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) node parameter to connectedNodes.ovpl, (2) cdpView.ovpl, (3) freeIPaddrs.ovpl, and (4) ecscmg.ovpl.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.911
EPSS Ranking 99.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Proposed Action
HP OpenView Network Node Manager could allow a remote attacker to execute arbitrary commands on the system.
Ransomware Campaign
Unknown
References
- http://marc.info/?l=bugtraq&m=112499121725662&w=2
- http://secunia.com/advisories/16555/
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/bid/14662
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21999
- http://marc.info/?l=bugtraq&m=112499121725662&w=2
- http://secunia.com/advisories/16555/
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/advisories/9150
- http://www.securityfocus.com/bid/14662
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21999
Products affected by CVE-2005-2773
-
cpe:2.3:a:hp:openview_network_node_manager:6.10
-
cpe:2.3:a:hp:openview_network_node_manager:6.2
-
cpe:2.3:a:hp:openview_network_node_manager:6.20
-
cpe:2.3:a:hp:openview_network_node_manager:6.31
-
cpe:2.3:a:hp:openview_network_node_manager:6.4
-
cpe:2.3:a:hp:openview_network_node_manager:6.41
-
cpe:2.3:a:hp:openview_network_node_manager:7.0.1
-
cpe:2.3:a:hp:openview_network_node_manager:7.01
-
cpe:2.3:a:hp:openview_network_node_manager:7.50