Signature Detail
Short Name |
HTTP:OVERFLOW:OPENVIEW-NNM-CGI |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
hewlett packard hp openview hpov nnm network node manager |
Release Date |
2009/09/16 |
Update Number |
1508 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+ |
HTTP: HP OpenView Network Node Manager
This signature detects attempts to exploit a known vulnerability in the HP OpenView Network Node Manager. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
HP OpenView Network Node Manager is prone to multiple stack-based buffer-overflow vulnerabilities. Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the Network Node Manager process. This facilitates the remote compromise of affected computers. Network Node Manager 6.41, 7.01, and 7.51 are affected when running on HP-UX, Solaris, Windows, and Linux platforms.
Affected Products
- HP OpenView Network Node Manager 6.41
- HP OpenView Network Node Manager 7.01
- HP OpenView Network Node Manager 7.51
- Nortel Networks Enterprise Network Management System
- Nortel Networks Multiservice Data Manager
References
- BugTraq: 26741
- CVE: CVE-2008-0067
- CVE: CVE-2007-6204
- URL: http://www.osvdb.org/39530