Vulnerability Details : CVE-2011-0267
Public exploit exists!
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2011-0267
Probability of exploitation activity in the next 30 days: 96.94%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2011-0267
-
HP OpenView NNM nnmRptConfig.exe schdParams Buffer Overflow
Disclosure Date: 2011-01-10First seen: 2020-04-26exploit/windows/http/hp_nnm_nnmrptconfig_schdparamsThis module exploits NNM's nnmRptConfig.exe. Similar to other NNM CGI bugs, the overflow occurs during a ov.sprintf_new() call, which allows an attacker to overwrite data on the stack, and gain arbitrary code execution. Authors: - sinn3r <sinn3r@metasploit.com>
CVSS scores for CVE-2011-0267
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2011-0267
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-0267
-
http://www.vupen.com/english/advisories/2011/0085
Webmail | OVH- OVH
-
http://www.exploit-db.com/exploits/17038
HP OpenView Network Node Manager (OV NNM) - 'nnmRptConfig.exe schdParams' Remote Buffer Overflow (Metasploit) - Windows remote Exploit
-
http://www.securitytracker.com/id?1024951
HP OpenView Network Node Manager Multiple Bugs Let Remote Users Execute Arbitrary Code - SecurityTracker
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/64649
HP Openview Network Node Manager schdParams buffer overflow CVE-2011-0267 Vulnerability Report
-
http://www.securityfocus.com/archive/1/515628
SecurityFocus
-
http://www.zerodayinitiative.com/advisories/ZDI-11-009/
ZDI-11-009 | Zero Day Initiative
-
http://securityreason.com/securityalert/8156
HP OpenView NNM nnmRptConfig.exe schdParams Buffer Overflow - CXSecurity.com
-
http://www.securityfocus.com/bid/45762
HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
Products affected by CVE-2011-0267
- cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
- cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*