Vulnerabilities > HP > Openview Network Node Manager > 7.0.1

DATE CVE VULNERABILITY TITLE RISK
2009-12-10 CVE-2009-4178 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Heap-based buffer overflow in OvWebHelp.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long Topic parameter.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-4177 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-4176 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Multiple heap-based buffer overflows in ovsessionmgr.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter to ovlogin.exe.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-3849 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) a long Template parameter to nnmRptConfig.exe, related to the strcat function; or (2) a long Oid parameter to snmp.exe.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-3848 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Stack-based buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long Template parameter, related to the vsprintf function.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-3847 Remote Code Execution vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via unknown vectors.
network
low complexity
hp
critical
 10.0
10
2009-12-10 CVE-2009-3846 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-12-10 CVE-2009-3845 Remote Code Execution vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
The port-3443 HTTP server in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostname parameter to unspecified Perl scripts.
network
low complexity
hp
critical
 10.0
10
2009-02-08 CVE-2008-4562 Buffer Errors vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
Buffer overflow in the ovlaunch CGI program in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 on Windows allows remote attackers to execute arbitrary code via a crafted Host parameter.
network
low complexity
hp CWE-119
critical
 10.0
10
2009-02-08 CVE-2008-4560 Information Exposure vulnerability in HP Openview Network Node Manager 7.0.1/7.51/7.53
HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to obtain sensitive information via (1) a crafted request to the nnmRptConfig.exe CGI program, which reveals the pathname of log directories; or (2) a crafted parameter in a request to the ovlaunch.exe CGI program, which reveals configuration details.
network
low complexity
hp CWE-200
7.8
7.8