Hp: >> Openview Network Node Manager >> 6.1 Security Vulnerabilities
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
CVSS Score
10.0
EPSS Score
0.338
Published
2008-04-16
Stack-based buffer overflow in ovwparser.dll in HP OpenView Network Node Manager (OV NNM) 7.53, 7.51, and earlier allows remote attackers to execute arbitrary code via a long URI in an HTTP request processed by ovas.exe, as demonstrated by a certain topology/homeBaseView request. NOTE: some of these details are obtained from third party information.
CVSS Score
10.0
EPSS Score
0.835
Published
2008-04-08
Memory leak in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (memory exhaustion) via crafted TCP packets.
CVSS Score
5.0
EPSS Score
0.005
Published
2003-12-31
Vulnerability in Network Node Manager (NNM) 6.2 and earlier in HP OpenView allows a local user to execute arbitrary code, possibly via a buffer overflow in a long hostname or object ID.
CVSS Score
7.2
EPSS Score
0.001
Published
2001-10-01
ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message.
CVSS Score
10.0
EPSS Score
0.033
Published
2001-09-20
HP Event Correlation Service (ecsd) as included with OpenView Network Node Manager 6.1 allows a remote attacker to gain addition privileges via a buffer overflow attack in the '-restore_config' command line parameter.
CVSS Score
10.0
EPSS Score
0.01
Published
2001-08-14
Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-12-11
Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem."
CVSS Score
5.0
EPSS Score
0.045
Published
2000-12-11
Vulnerability in HP OpenView Network Node Manager (NMM) version 6.1 related to passwords.
CVSS Score
2.1
EPSS Score
0.002
Published
2000-10-20
Vulnerability in the newgrp command in HP-UX 11.00 allows local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
2000-10-20
Page 1