Added: 01/09/2010
CVE: CVE-2009-3848
BID: 37296
OSVDB: 60926
HP OpenView Network Node Manager is network availability and performance management software.
A stack buffer overflow vulnerability allows remote attackers to execute arbitrary commands by requesting the **nnmRptConfig.exe**
CGI program with a long, specially crafted **Template**
parameter.
Apply the appropriate patch.
<http://secunia.com/advisories/37665/>
Exploit works on HP OpenView Network Node Manager 7.53 with the patch NNM_01200 on Windows Server 2003.
On Windows Server 2003, read and execute privileges on the file **_%windir%_\system32\cmd.exe**
must be granted to the Internet Guest Account **IUSR__<computername>_**
for the exploit to work properly. Note that users in the **Users**
and **Power Users**
groups do not have such privileges, but users in the **Administrators**
and **TelnetClients**
groups do.
Windows