HP OpenView Network Node Manager getnnmdata.exe (ICount) CGI Buffer Overflow

vendor:

OpenView Network Node Manager

by:

N/A

CVSS

N/A

Buffer Overflow

119

CWE

Product Name: OpenView Network Node Manager

Affected Version From: 7.5

Affected Version To: 7.53

Patch Exists: NO

Related CWE: CVE-2010-1554

CPE: a:hp:openview_network_node_manager:7.50

Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2012-0137/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2012-0062/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2012-1201/

Other Scripts:

Platforms Tested: Windows

2010

HP OpenView Network Node Manager getnnmdata.exe (ICount) CGI Buffer Overflow

This module exploits a buffer overflow in HP OpenView Network Node Manager 7.50/7.53. By sending specially crafted ICount parameter to the getnnmdata.exe CGI, an attacker may be able to execute arbitrary code.

Mitigation:

Unknown

Source

HP OpenView Network Node Manager getnnmdata.exe (ICount) CGI Buffer Overflow

Mitigation:

Exploit-DB raw data: