Описание
Integer overflow in ovalarmsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted command to TCP port 2954, which triggers a heap-based buffer overflow.
Ссылки
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.16978
Средний
10 Critical
CVSS2
Дефекты
CWE-189
Связанные уязвимости
github
почти 4 года назад
Integer overflow in ovalarmsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted command to TCP port 2954, which triggers a heap-based buffer overflow.
EPSS
Процентиль: 95%
0.16978
Средний
10 Critical
CVSS2
Дефекты
CWE-189