1. CVE-Search
  2. CVE-2010-1964
ID CVE-2010-1964
Summary Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CAN-683.
References
Vulnerable Configurations
  • cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*
  • cpe:2.3:a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*
    cpe:2.3:a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*
CVSS
Base: 7.5 (as of 10-10-2018 - 19:58)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 40873
bugtraq 20100616 ZDI-10-108: HP OpenView NNM ovwebsnmpsrv.exe Command Line Argument Remote Code Execution Vulnerability
hp
  • HPSBMA02537
  • SSRT010027
misc http://www.zerodayinitiative.com/advisories/ZDI-10-108
osvdb 65552
sreason 8155
Last major update 10-10-2018 - 19:58
Published 17-06-2010 - 16:30
Last modified 10-10-2018 - 19:58
Back to Top