Lucene search
HpCVE-2009-4177HistoryDec 10, 2009 - 10:30 p.m.
CVE-2009-4177
2009-12-1022:30:00
CWE-119
hp
web.nvd.nist.gov
29
cve-2009-4177
buffer overflow
webappmon.exe
hp openview network node manager
ov nnm
nvd
security vulnerability
remote code execution
http header
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.83
Percentile
98.4%
Buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header.
Affected configurations
Node
hpopenview_network_node_managerMatch7.0.1hp_ux
ORhpopenview_network_node_managerMatch7.0.1linux
ORhpopenview_network_node_managerMatch7.0.1solaris
ORhpopenview_network_node_managerMatch7.0.1windows
ORhpopenview_network_node_managerMatch7.51-hp-ux
ORhpopenview_network_node_managerMatch7.51-linux
ORhpopenview_network_node_managerMatch7.51-solaris
ORhpopenview_network_node_managerMatch7.51-windows
ORhpopenview_network_node_managerMatch7.53-hp-ux
ORhpopenview_network_node_managerMatch7.53-linux
ORhpopenview_network_node_managerMatch7.53-solaris
ORhpopenview_network_node_managerMatch7.53-windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | openview_network_node_manager | 7.0.1 | cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:hp_ux:*:*:*:*:* |
| hp | openview_network_node_manager | 7.0.1 | cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:linux:*:*:*:*:* |
| hp | openview_network_node_manager | 7.0.1 | cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:solaris:*:*:*:*:* |
| hp | openview_network_node_manager | 7.0.1 | cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:windows:*:*:*:*:* |
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:* |
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:* |
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:* |
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:* |
| hp | openview_network_node_manager | 7.53 | cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:* |
| hp | openview_network_node_manager | 7.53 | cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:* |
References
Related
prion
prion
Buffer overflow
2009-12-10 22:30:00
cvelist
cvelist
CVE-2009-4177
2009-12-10 22:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
TPTI-09-10: HP OpenView NNM webappmon.exe CGI Host Header Buffer Overflow Vulnerability
2009-12-09 00:00:00
HP OpenView NNM multiple security vulnerabilities
2009-12-10 00:00:00
nvd
nvd
CVE-2009-4177
2009-12-10 22:30:00
seebug
seebug
HP OpenView Network Node Managerε€δΈͺθΏη¨δ»£η ζ§θ‘ζΌζ΄
2009-12-14 00:00:00
nessus
nessus
HP-UX PHSS_40705 : s700_800 11.11 OV NNM7.01 Intermediate Patch 13
2010-05-10 00:00:00
HP-UX PHSS_40375 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 25
2009-12-14 00:00:00
HP-UX PHSS_40374 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 25
2009-12-14 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.83
Percentile
98.4%
Related for CVE-2009-4177