HP » Openview Network Node Manager » 7.51 : Security Vulnerabilities, CVEs, Published In 2008 (Code Execution)
Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.
Max CVSS
9.0
EPSS Score
40.57%
Published
2008-10-13
Updated
2013-08-19
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
Max CVSS
10.0
EPSS Score
20.62%
Published
2008-04-16
Updated
2018-10-11
CVE-2008-1697
Public exploit
Stack-based buffer overflow in ovwparser.dll in HP OpenView Network Node Manager (OV NNM) 7.53, 7.51, and earlier allows remote attackers to execute arbitrary code via a long URI in an HTTP request processed by ovas.exe, as demonstrated by a certain topology/homeBaseView request. NOTE: some of these details are obtained from third party information.
Max CVSS
10.0
EPSS Score
95.57%
Published
2008-04-08
Updated
2017-09-29
3 vulnerabilities found