Описание
Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:hp_ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:windows:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*
EPSS
Процентиль: 96%
0.27747
Средний
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter.
EPSS
Процентиль: 96%
0.27747
Средний
10 Critical
CVSS2
Дефекты
CWE-119