CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3845

The port-3443 HTTP server in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostname parameter to unspecified Perl scripts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.186

EPSS Ranking 94.9%

CVSS Severity

CVSS v2 Score 10.0

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877
http://marc.info/?l=bugtraq&m=126046355120442&w=2
http://www.securityfocus.com/archive/1/508345/100/0/threaded
http://www.securityfocus.com/bid/37261
http://www.securityfocus.com/bid/37300
http://zerodayinitiative.com/advisories/ZDI-09-094/
https://exchange.xforce.ibmcloud.com/vulnerabilities/54651
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877
http://marc.info/?l=bugtraq&m=126046355120442&w=2
http://www.securityfocus.com/archive/1/508345/100/0/threaded
http://www.securityfocus.com/bid/37261
http://www.securityfocus.com/bid/37300
http://zerodayinitiative.com/advisories/ZDI-09-094/
https://exchange.xforce.ibmcloud.com/vulnerabilities/54651

Products affected by CVE-2009-3845

Hp » Openview Network Node Manager » Version: 7.0.1

cpe:2.3:a:hp:openview_network_node_manager:7.0.1
Hp » Openview Network Node Manager » Version: 7.51

cpe:2.3:a:hp:openview_network_node_manager:7.51
Hp » Openview Network Node Manager » Version: 7.53

cpe:2.3:a:hp:openview_network_node_manager:7.53

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3845

Products

Pricing

Contact Us