VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis
[ about VRDA Feed | JPCERT/CC



 
Vulnerability Analysis Result (Revision No : 1) [ Download XML
CVE-2010-1552
openview_network_node_manager: Stack-based buffer overflow in the doLoad function ...
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1552

Original

Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act and app parameters.

Translation   (Show)





About This Analysis Information
Analysis Information Provider:
NIST NVD
First Published:
2010-05-13
Source Information Category:
Advisory, Alert
Last Updated:
2010-05-14




Affected Product Tags
cpe:/a:hp:openview_network_node_manager:7.0.1
cpe:/a:hp:openview_network_node_manager:7.51
cpe:/a:hp:openview_network_node_manager:7.51:-:hp-ux
cpe:/a:hp:openview_network_node_manager:7.51:-:linux
cpe:/a:hp:openview_network_node_manager:7.51:-:solaris
cpe:/a:hp:openview_network_node_manager:7.51:-:windows
cpe:/a:hp:openview_network_node_manager:7.53
cpe:/a:hp:openview_network_node_manager:7.53:-:hp-ux
cpe:/a:hp:openview_network_node_manager:7.53:-:linux
cpe:/a:hp:openview_network_node_manager:7.53:-:solaris
cpe:/a:hp:openview_network_node_manager:7.53:-:windows
 


Vulnerability Analysis Results
[Access Vector]  [?]
Undefined [?]

Local [?]
Adjacent Network [?]
X Network [?]
[Access Complexit]  [?]
Undefined [?]

High [?]
Medium [?]
X Low [?]
[Authentication]  [?]
Undefined [?]

Multiple [?]
Single [?]
X None [?]
[Confidentiality Impact]  [?]
Undefined [?]

None [?]
Partial [?]
X Complete [?]
[Integrity Impact]  [?]
Undefined [?]

None [?]
Partial [?]
X Complete [?]
[Availability Impact]  [?]
Undefined [?]

None [?]
Partial [?]
X Complete [?]
Alternatives




References
HP SSRT010098




MISC http://zerodayinitiative.com/advisories/ZDI-10-083/




Vulnerability Type Buffer Errors (CWE-119)




Copyright © 2010 JPCERT/CC All Rights Reserved.