Lucene search
AnonymousZDI-10-081HistoryMay 11, 2010 - 12:00 a.m.
HP OpenView NNM ovet_demandpoll sel CGI Variable Format String Remote Code Execution Vulnerability
2010-05-1100:00:00
Anonymous
www.zerodayinitiative.com
11
EPSS
0.762
Percentile
98.2%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ovet_demandpoll.exe process. This process can be started by invoking the webappmon.exe CGI application through the webserver. The process calls vnsprintf() directly with the contents of the ‘sel’ POST variable. By providing a malicious value this format string vulnerability can be leveraged by remote attackers to execute arbitrary code under the context of the ovet_demandpoll.exe process.
Related
cvelist
cvelist
CVE-2010-1550
2010-05-13 17:00:00
nvd
nvd
CVE-2010-1550
2010-05-13 17:30:02
cve
cve
CVE-2010-1550
2010-05-13 17:30:02
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
ZDI-10-081: HP OpenView NNM ovet_demandpoll sel CGI Variable Format String Remote Code Execution Vulnerability
2010-05-12 00:00:00
[security bulletin] HPSBMA02527 SSRT010098 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
2010-05-12 00:00:00
HP OpenView Network Node Manage multiple security vulnerabilities
2010-05-12 00:00:00
prion
prion
Format string
2010-05-13 17:30:00
openvas
openvas
HP OpenView Network Node Manager Multiple Vulnerabilities (May 2010)
2010-06-01 00:00:00
nessus
nessus
HP-UX PHSS_40708 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 26
2010-05-17 00:00:00
HP-UX PHSS_40707 : s700_800 11.X OV NNM7.53 PA-RISC Intermediate Patch 26
2010-05-17 00:00:00
HP-UX PHSS_40705 : s700_800 11.11 OV NNM7.01 Intermediate Patch 13
2010-05-10 00:00:00