| VID |
23207 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
The HP OpenView NNM contains multiple CGI scripts that allows execution of arbitrary commands. HP OpenView Network Node Manager (NNM) discovers network devices and provides a map to illustrate what the network actually looks like. HP Openview Network Node Manager (OV NNM) versions 6.41, 7.01, and 7.51 are vulnerable to multiple stack-based buffer overflow vulnerabilities in the "ovlogin.exe", "OpenView5.exe", "snmpviewer.exe", and "webappmon.exe" CGI applications. By sending an overly long argument to one of the vulnerable CGI applications, a remote attacker could exploit these vulnerabilities to execute arbitrary code on the affected host with the web server privileges.
* Note: If this check solely relied on the version number of the remote HP NNM web server to assess this vulnerability, then this might be a false positive.
* References:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
http://support.openview.hp.com/patches/patch_index.jsp
http://www.securityfocus.com/archive/1/archive/1/484704/100/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-07-071.html
http://www.frsirt.com/english/advisories/2007/4111
http://secunia.com/advisories/27964
http://www.securitytracker.com/id?1019055
* Platforms Affected:
HP OpenView Network Node Manager 6.41
HP OpenView Network Node Manager 7.01
HP OpenView Network Node Manager 7.51
HP HP-UX HP-UX B.11.00, B.11.11, and B.11.23
Microsoft Windows Any version
Linux Any version
Sun Solaris Any version |
| Recommendation |
Apply to the appropriate patch for your system, as listed in HPSBMA02281 SSRT061261 rev.1 at http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01188923&jumpid=reg_R1002_USEN |
| Related URL |
CVE-2007-6204 (CVE) |
| Related URL |
26741 (SecurityFocus) |
| Related URL |
38892 (ISS) |
|
