Lucene search
HistoryApr 28, 2009 - 4:30 p.m.
CVE-2008-2438
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.9
Confidence
Low
EPSS
0.738
Percentile
98.1%
Integer overflow in ovalarmsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted command to TCP port 2954, which triggers a heap-based buffer overflow.
Affected configurations
Node
hpopenview_network_node_managerMatch7.01
ORhpopenview_network_node_managerMatch7.51
ORhpopenview_network_node_managerMatch7.53
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | openview_network_node_manager | 7.01 | cpe:2.3:a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:* |
| hp | openview_network_node_manager | 7.51 | cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:* |
| hp | openview_network_node_manager | 7.53 | cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Secunia Research: HP OpenView Network Node Manager "ovalarmsrv" Integer Overflow
2009-04-29 00:00:00
[security bulletin] HPSBMA02424 SSRT080125 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
2009-04-28 00:00:00
HP OpenView Network Node Manager code execution
2009-05-07 00:00:00
prion
prion
Integer overflow
2009-04-28 16:30:00
cvelist
cvelist
CVE-2008-2438
2009-04-28 16:00:00
cve
cve
CVE-2008-2438
2009-04-28 16:30:03
nessus
nessus
HP-UX PHSS_39246 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 22
2009-06-15 00:00:00
HP-UX PHSS_39245 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 22
2009-06-15 00:00:00
HP-UX PHSS_40705 : s700_800 11.11 OV NNM7.01 Intermediate Patch 13
2010-05-10 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.9
Confidence
Low
EPSS
0.738
Percentile
98.1%
Related for NVD:CVE-2008-2438