CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:P/A:C
EPSS
Percentile
97.3%
Added: 04/18/2008
CVE: CVE-2008-3544
BID: 28668
OSVDB: 50076
HP OpenView Network Node Manager is network availability and performance management software.
A buffer overflow vulnerability in the Ovalarmsrv service in Network Node Manager allows remote attackers to execute arbitrary commands.
Apply the appropriate patch.
<http://aluigi.altervista.org/adv/closedview_old-adv.txt>
Exploit works on HP OpenView Network Node Manager 7.50 for Windows and HP OpenView Network Node Manager 7.01 for Linux.
Windows 2000
Windows Server 2003
Linux