CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
99.2%
Added: 07/02/2008
CVE: CVE-2005-2773
BID: 14662
OSVDB: 19057
HP OpenView Network Node Manager is network availability and performance management software.
A command injection vulnerability in the **connectedNodes.ovpl**
CGI script allows remote attackers to execute arbitrary commands by sending a specially crafted **node**
parameter to the script.
Apply the fix referenced in SSRT 051023.
<http://archives.neohapsis.com/archives/bugtraq/2005-08/0333.html>
Exploit requires the “nc” utility to be present on the target system, and the URI PERL module to be present on the SAINTexploit host.