Signature Detail
Short Name |
APP:HPOV:GETNNMDATA-MAXAGE-OF |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP OpenView NNM getnnmdata.exe CGI MaxAge Parameter Buffer Overflow hewlett-packard |
Release Date |
2010/10/07 |
Update Number |
1787 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+ |
APP: HP OpenView NNM getnnmdata.exe CGI MaxAge Parameter Buffer Overflow
This signature detects attempts to exploit a known vulnerability in HP OpenView. It is due to a boundary error in getnnmdata.exe when processing the MaxAge parameter sent in a crafted HTTP request. A remote unauthenticated attacker can exploit this by sending a crafted HTTP request to a target server, potentially causing arbitrary code to be injected and executed in the security context of the getnnmdata.exe process.
Extended Description
HP OpenView Network Node Manager (NNM) is prone to an remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
- HP OpenView Network Node Manager 7.01
- HP OpenView Network Node Manager 7.51
- HP OpenView Network Node Manager 7.53
References