Signature Detail
Short Name |
APP:HPOV:NNM-OF |
|---|---|
Severity |
Medium |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP openview hpov network node manager nnm |
Release Date |
2010/07/14 |
Update Number |
1730 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+ |
APP:HP OpenView Network Node Manager getnnmdata.exe Parameter Overflow
This signature detects attempts to exploit a known vulnerability in the HP OpenView Network Node Manager. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server. Versions 7.53, 7.51, and 7.01 are known to be vulnerable.
Extended Description
HP OpenView Network Node Manager (NNM) is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
- HP OpenView Network Node Manager 7.01
- HP OpenView Network Node Manager 7.51
- HP OpenView Network Node Manager 7.53
References
- BugTraq: 40071
- BugTraq: 40072
- BugTraq: 40070
- CVE: CVE-2010-1553
- CVE: CVE-2010-1554
- CVE: CVE-2010-1555
- URL: http://www.openview.hp.com/products/nnm/