Lucene search
HistoryJan 05, 2012 - 12:00 a.m.
HP OpenView NNM webappmon.exe parameter Remote Code Execution Vulnerability
0.582 Medium
EPSS
Percentile
97.7%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within webappmon.exe CGI program. When processing crafted parameters, there exists an insufficient boundary check before supplying a format string with the values, causing a stack overflow. This can lead to memory corruption which can be leveraged to execute arbitrary code under the context of the target service.
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Code injection
2011-11-02 17:55:00
cvelist
cvelist
CVE-2011-3166
2011-11-02 17:00:00
securityvulns
securityvulns
ZDI-12-003 : HP OpenView NNM webappmon.exe parameter Remote Code Execution Vulnerability
2012-01-09 00:00:00
[security bulletin] HPSBMU02712 SSRT100649 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
2011-11-06 00:00:00
HP OpenView Network Node Manager code execution
2012-01-09 00:00:00
nvd
nvd
CVE-2011-3166
2011-11-02 17:55:00
cve
cve
CVE-2011-3166
2011-11-02 17:55:00
openvas
openvas
HP OpenView Network Node Manager Multiple RCE Vulnerabilities
2011-12-14 00:00:00
nessus
nessus