Vulnerability Details CVE-2010-1961
Buffer overflow in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified variables to jovgraph.exe, which are not properly handled in a call to the sprintf function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.734
EPSS Ranking 98.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=127602909915281&w=2
- http://marc.info/?l=bugtraq&m=127602909915281&w=2
- http://secunia.com/advisories/40101
- http://www.securityfocus.com/archive/1/511731/100/0/threaded
- http://www.securityfocus.com/bid/40638
- http://www.securitytracker.com/id?1024071
- http://www.zerodayinitiative.com/advisories/ZDI-10-106/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59250
- http://marc.info/?l=bugtraq&m=127602909915281&w=2
- http://marc.info/?l=bugtraq&m=127602909915281&w=2
- http://secunia.com/advisories/40101
- http://www.securityfocus.com/archive/1/511731/100/0/threaded
- http://www.securityfocus.com/bid/40638
- http://www.securitytracker.com/id?1024071
- http://www.zerodayinitiative.com/advisories/ZDI-10-106/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59250
Products affected by CVE-2010-1961
-
cpe:2.3:a:hp:openview_network_node_manager:7.51
-
cpe:2.3:a:hp:openview_network_node_manager:7.53