Signature Detail
Short Name |
APP:HPOV:NNM-OVALARM-IO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP OpenView Network Node Manager ovalarmsrv Integer Overflow |
Release Date |
2010/09/22 |
Update Number |
1777 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: HP OpenView Network Node Manager ovalarmsrv Integer Overflow
This signature detects attempts to exploit a known vulnerability in the HP OpenView Network Node Manager ovalarmsrv. A successful attack can lead to an integer overflow and arbitrary remote code execution within the context of the server.
Extended Description
HP OpenView Network Node Manager (NNM) is prone to a remote code-execution vulnerability caused by an integer-overflow error. Successfully exploiting this issue allows an attacker to execute arbitrary code with the privileges of the user running the affected application. This issue affects NNM 7.01, 7.51, and 7.53.
Affected Products
- HP OpenView Network Node Manager 7.01
- HP OpenView Network Node Manager 7.51
- HP OpenView Network Node Manager 7.53
References
- BugTraq: 34738
- CVE: CVE-2008-2438