cvelistv5 - cve-2011-0267

CVE-2011-0267 (GCVE-0-2011-0267)

Vulnerability from cvelistv5

Published

2011-01-13 18:35

Modified

2024-08-06 21:51

Severity ?

CWE

Summary

Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.

References

URL

Tags

	hp-security-alert@hp.com	http://securityreason.com/securityalert/8156
	hp-security-alert@hp.com	http://www.exploit-db.com/exploits/17038
	hp-security-alert@hp.com	http://www.securityfocus.com/archive/1/515628
	hp-security-alert@hp.com	http://www.securityfocus.com/archive/1/515628
	hp-security-alert@hp.com	http://www.securityfocus.com/bid/45762
	hp-security-alert@hp.com	http://www.securitytracker.com/id?1024951
	hp-security-alert@hp.com	http://www.vupen.com/english/advisories/2011/0085
	hp-security-alert@hp.com	http://www.zerodayinitiative.com/advisories/ZDI-11-009/
	hp-security-alert@hp.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/64649
	af854a3a-2127-422b-91ae-364da2661108	http://securityreason.com/securityalert/8156
	af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/17038
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/515628
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/515628
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/45762
	af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1024951
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2011/0085
	af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-11-009/
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/64649

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:51:07.906Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "HPSBMA02621",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/515628"
          },
          {
            "name": "ADV-2011-0085",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0085"
          },
          {
            "name": "SSRT100352",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/515628"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
          },
          {
            "name": "45762",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/45762"
          },
          {
            "name": "17038",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/17038"
          },
          {
            "name": "1024951",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024951"
          },
          {
            "name": "hp-opennnm-schdparams-bo(64649)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
          },
          {
            "name": "8156",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/8156"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-01-10T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-16T14:57:01",
        "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "shortName": "hp"
      },
      "references": [
        {
          "name": "HPSBMA02621",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://www.securityfocus.com/archive/1/515628"
        },
        {
          "name": "ADV-2011-0085",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0085"
        },
        {
          "name": "SSRT100352",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://www.securityfocus.com/archive/1/515628"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
        },
        {
          "name": "45762",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/45762"
        },
        {
          "name": "17038",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/17038"
        },
        {
          "name": "1024951",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024951"
        },
        {
          "name": "hp-opennnm-schdparams-bo(64649)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
        },
        {
          "name": "8156",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/8156"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "hp-security-alert@hp.com",
          "ID": "CVE-2011-0267",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "HPSBMA02621",
              "refsource": "HP",
              "url": "http://www.securityfocus.com/archive/1/515628"
            },
            {
              "name": "ADV-2011-0085",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0085"
            },
            {
              "name": "SSRT100352",
              "refsource": "HP",
              "url": "http://www.securityfocus.com/archive/1/515628"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/",
              "refsource": "MISC",
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
            },
            {
              "name": "45762",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/45762"
            },
            {
              "name": "17038",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/17038"
            },
            {
              "name": "1024951",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024951"
            },
            {
              "name": "hp-opennnm-schdparams-bo(64649)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
            },
            {
              "name": "8156",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/8156"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
    "assignerShortName": "hp",
    "cveId": "CVE-2011-0267",
    "datePublished": "2011-01-13T18:35:00",
    "dateReserved": "2010-12-23T00:00:00",
    "dateUpdated": "2024-08-06T21:51:07.906Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-0267\",\"sourceIdentifier\":\"hp-security-alert@hp.com\",\"published\":\"2011-01-13T19:00:05.493\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples desbordamientos de b\u00fafer en nnmRptConfig.exe en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53 permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante (1) el par\u00e1metro schdParams o (2)  namaParams, una vulnerabilidad diferente a CVE-2011-0266.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5CC1E39-5607-41A9-8BBE-A51F1AC9D5CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4986C-97B8-4382-AC4B-55E22C6BAE62\"}]}]}],\"references\":[{\"url\":\"http://securityreason.com/securityalert/8156\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.exploit-db.com/exploits/17038\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/515628\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/515628\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.securityfocus.com/bid/45762\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.securitytracker.com/id?1024951\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0085\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-11-009/\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/64649\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://securityreason.com/securityalert/8156\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.exploit-db.com/exploits/17038\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/515628\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/515628\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/45762\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1024951\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0085\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-11-009/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/64649\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTA-2011-AVI-015

Vulnerability from certfr_avis

Plusieurs vulnérabilités dans HP OpenView Network Node Manager, permettant l'exécution de code arbitraire à distance, ont été corrigées.

Description

Plusieurs vulnérabilités dans HP OpenView Network Manager ont été corrigées. Elles permettent à une personne malintentionnée distante d'exécuter du code arbitraire.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

OpenView Network Node Manager v7.51 et v7.53.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

ghsa-2w6p-6qgj-jpgr

Vulnerability from github

Published

2022-05-17 02:03

Modified

2025-04-11 03:42

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-0267"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-01-13T19:00:00Z",
    "severity": "HIGH"
  },
  "details": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.",
  "id": "GHSA-2w6p-6qgj-jpgr",
  "modified": "2025-04-11T03:42:57Z",
  "published": "2022-05-17T02:03:09Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0267"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
    },
    {
      "type": "WEB",
      "url": "http://securityreason.com/securityalert/8156"
    },
    {
      "type": "WEB",
      "url": "http://www.exploit-db.com/exploits/17038"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/515628"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/45762"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1024951"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2011/0085"
    },
    {
      "type": "WEB",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2011-0267

Vulnerability from fkie_nvd

Published

2011-01-13 19:00

Modified

2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	hp-security-alert@hp.com	http://securityreason.com/securityalert/8156
	hp-security-alert@hp.com	http://www.exploit-db.com/exploits/17038
	hp-security-alert@hp.com	http://www.securityfocus.com/archive/1/515628
	hp-security-alert@hp.com	http://www.securityfocus.com/bid/45762
	hp-security-alert@hp.com	http://www.securitytracker.com/id?1024951
	hp-security-alert@hp.com	http://www.vupen.com/english/advisories/2011/0085
	hp-security-alert@hp.com	http://www.zerodayinitiative.com/advisories/ZDI-11-009/
	hp-security-alert@hp.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/64649
	af854a3a-2127-422b-91ae-364da2661108	http://securityreason.com/securityalert/8156
	af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/17038
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/515628
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/45762
	af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1024951
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2011/0085
	af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-11-009/
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/64649

Impacted products

	Vendor	Product	Version
	hp	openview_network_node_manager	7.51
	hp	openview_network_node_manager	7.53

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5CC1E39-5607-41A9-8BBE-A51F1AC9D5CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3A4986C-97B8-4382-AC4B-55E22C6BAE62",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples desbordamientos de b\u00fafer en nnmRptConfig.exe en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53 permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante (1) el par\u00e1metro schdParams o (2)  namaParams, una vulnerabilidad diferente a CVE-2011-0266."
    }
  ],
  "id": "CVE-2011-0267",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-01-13T19:00:05.493",
  "references": [
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://securityreason.com/securityalert/8156"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.exploit-db.com/exploits/17038"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.securityfocus.com/archive/1/515628"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.securityfocus.com/bid/45762"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.securitytracker.com/id?1024951"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.vupen.com/english/advisories/2011/0085"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
    },
    {
      "source": "hp-security-alert@hp.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/8156"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.exploit-db.com/exploits/17038"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/515628"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/45762"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1024951"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0085"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
    }
  ],
  "sourceIdentifier": "hp-security-alert@hp.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2011-0267

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2011-0267

Aliases

CVE-2011-0267

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-0267",
    "description": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.",
    "id": "GSD-2011-0267",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2011-0267"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-0267"
      ],
      "details": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.",
      "id": "GSD-2011-0267",
      "modified": "2023-12-13T01:19:04.114599Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "hp-security-alert@hp.com",
        "ID": "CVE-2011-0267",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "HPSBMA02621",
            "refsource": "HP",
            "url": "http://www.securityfocus.com/archive/1/515628"
          },
          {
            "name": "ADV-2011-0085",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2011/0085"
          },
          {
            "name": "SSRT100352",
            "refsource": "HP",
            "url": "http://www.securityfocus.com/archive/1/515628"
          },
          {
            "name": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/",
            "refsource": "MISC",
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
          },
          {
            "name": "45762",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/45762"
          },
          {
            "name": "17038",
            "refsource": "EXPLOIT-DB",
            "url": "http://www.exploit-db.com/exploits/17038"
          },
          {
            "name": "1024951",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1024951"
          },
          {
            "name": "hp-opennnm-schdparams-bo(64649)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
          },
          {
            "name": "8156",
            "refsource": "SREASON",
            "url": "http://securityreason.com/securityalert/8156"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "hp-security-alert@hp.com",
          "ID": "CVE-2011-0267"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-11-009/"
            },
            {
              "name": "SSRT100352",
              "refsource": "HP",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/515628"
            },
            {
              "name": "1024951",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1024951"
            },
            {
              "name": "45762",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/45762"
            },
            {
              "name": "ADV-2011-0085",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2011/0085"
            },
            {
              "name": "17038",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "http://www.exploit-db.com/exploits/17038"
            },
            {
              "name": "8156",
              "refsource": "SREASON",
              "tags": [],
              "url": "http://securityreason.com/securityalert/8156"
            },
            {
              "name": "hp-opennnm-schdparams-bo(64649)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64649"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-17T01:33Z",
      "publishedDate": "2011-01-13T19:00Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2011-0267 (GCVE-0-2011-0267)

Vulnerability from cvelistv5

CERTA-2011-AVI-015

Vulnerability from certfr_avis

Description

Solution

ghsa-2w6p-6qgj-jpgr

Vulnerability from github

fkie_cve-2011-0267

Vulnerability from fkie_nvd

gsd-2011-0267

Vulnerability from gsd

Tags

Sightings

Nomenclature