Vulnerability Details CVE-2009-3840
The embedded database engine service (aka ovdbrun.exe) in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service (daemon crash) via an invalid Error Code field in a packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.172
EPSS Ranking 94.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980
- http://osvdb.org/60200
- http://seclists.org/fulldisclosure/2009/Nov/199
- http://www.coresecurity.com/content/openview_nnm_internaldb_dos
- http://www.securityfocus.com/bid/37046
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980
- http://osvdb.org/60200
- http://seclists.org/fulldisclosure/2009/Nov/199
- http://www.coresecurity.com/content/openview_nnm_internaldb_dos
- http://www.securityfocus.com/bid/37046
Products affected by CVE-2009-3840
-
cpe:2.3:a:hp:openview_network_node_manager:7.51
-
cpe:2.3:a:hp:openview_network_node_manager:7.53