Lucene search
MitreCVELIST:CVE-2008-1842HistoryApr 16, 2008 - 5:00 p.m.
CVE-2008-1842
2008-04-1617:00:00
mitre
www.cve.org
4
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
References
aluigi.altervista.org/adv/closedview-adv.txt
aluigi.org/poc/closedview.zip
marc.info/?l=bugtraq&m=121321155405849&w=2
secunia.com/advisories/29713
securitytracker.com/id?1019821
www.securityfocus.com/archive/1/493781/100/0/threaded
www.securityfocus.com/bid/28689
www.vupen.com/english/advisories/2008/1159
exchange.xforce.ibmcloud.com/vulnerabilities/41737
Related
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
HP OpenView Network Node Manager 7.x - 'ovspmd' Buffer Overflow
2008-04-08 00:00:00
nvd
nvd
CVE-2008-1842
2008-04-16 17:05:00
nessus
nessus
HP-UX PHSS_38009 : HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS) (HPSBMA02340 SSRT080024, SSRT080041 rev.1)
2008-06-16 00:00:00
HP-UX PHSS_38488 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 20
2009-06-15 00:00:00
HP-UX PHSS_38489 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 20
2009-06-15 00:00:00
cve
cve
CVE-2008-1842
2008-04-16 17:05:00
securityvulns
securityvulns
prion
prion
Integer overflow
2008-04-16 17:05:00