vendor:
OpenView NNM
by:
Nahuel Riva
N/A
CVSS
N/A
Buffer overflow
119
CWE
Product Name: OpenView NNM
Affected Version From: OpenView NNM v.7.53
Affected Version To: OpenView NNM v.7.53
Patch Exists: YES
Related CWE: CVE-2010-2709
CPE: a:hp:openview_nnm:7.53
Platforms Tested:
2010
HP OpenView NNM OvJavaLocale Buffer Overflow Vulnerability
There is a buffer overflow vulnerability in the webappmon.exe CGI application included with HP OpenView NNM. This bug can be exploited by sending a cookie header with a maliciously crafted OvJavaLocale value. Code execution is likely achievable in a reliable way.
Mitigation:
Upgrade to the latest version of OpenView NNM, available from HP.
