Lucene search
HistoryJan 05, 2012 - 12:00 a.m.
HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability
0.958 High
EPSS
Percentile
99.5%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ov.dll. When processing a user supplied file name for the textFile option, there exists an insufficient boundary check before supplying the value to a format string within _OVBuildPath, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
Related
saint
saint
HP OpenView Network Node Manager OVBuildPath Overflow
2012-02-20 00:00:00
HP OpenView Network Node Manager OVBuildPath Overflow
2012-02-20 00:00:00
HP OpenView Network Node Manager OVBuildPath Overflow
2012-02-20 00:00:00
cve
cve
CVE-2011-3167
2011-11-02 17:55:01
securityvulns
securityvulns
ZDI-12-002 : HP OpenView NNM ov.dll _OVBuildPath Remote Code Execution Vulnerability
2012-01-09 00:00:00
HP OpenView Network Node Manager code execution
2012-01-09 00:00:00
cvelist
cvelist
CVE-2011-3167
2011-11-02 17:00:00
checkpoint_advisories
checkpoint_advisories
HP OpenView Network Node Manager ov.dll Buffer Overflow (CVE-2011-3167)
2012-05-14 00:00:00
prion
prion
Code injection
2011-11-02 17:55:00
nvd
nvd
CVE-2011-3167
2011-11-02 17:55:01
packetstorm
packetstorm
HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow
2012-01-20 00:00:00
openvas
openvas
HP OpenView Network Node Manager Multiple RCE Vulnerabilities
2011-12-14 00:00:00
nessus
nessus