Vulnerability Details CVE-2007-6204
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.exe, (2) OpenView5.exe, (3) snmpviewer.exe, and (4) webappmon.exe, as demonstrated via a long Action parameter to OpenView5.exe.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.816
EPSS Ranking 99.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
- http://secunia.com/advisories/27964
- http://securityreason.com/securityalert/3441
- http://www.securityfocus.com/archive/1/484704/100/0/threaded
- http://www.securityfocus.com/bid/26741
- http://www.securitytracker.com/id?1019055
- http://www.vupen.com/english/advisories/2007/4111
- http://www.zerodayinitiative.com/advisories/ZDI-07-071.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38892
- https://www.exploit-db.com/exploits/4724
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
- http://secunia.com/advisories/27964
- http://securityreason.com/securityalert/3441
- http://www.securityfocus.com/archive/1/484704/100/0/threaded
- http://www.securityfocus.com/bid/26741
- http://www.securitytracker.com/id?1019055
- http://www.vupen.com/english/advisories/2007/4111
- http://www.zerodayinitiative.com/advisories/ZDI-07-071.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38892
- https://www.exploit-db.com/exploits/4724
Products affected by CVE-2007-6204
-
cpe:2.3:a:hp:openview_network_node_manager:6.41
-
cpe:2.3:a:hp:openview_network_node_manager:7.0.1
-
cpe:2.3:a:hp:openview_network_node_manager:7.51