CVE-2009-4179 – HP OpenView Network Node Manager (OV NNM) - 'ovalarm.exe' CGI Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-4179
Stack-based buffer overflow in ovalarm.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Accept-Language header in an OVABverbose action. Desbordamiento del búfer de la pila en ovalarm.exe in HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar codigo arbitrario a través de una cabecera Accpt-Language HTTP larga en una accion OVABverbose. • https://www.exploit-db.com/exploits/16797 https://www.exploit-db.com/exploits/10394 http://dvlabs.tippingpoint.com/advisory/TPTI-09-12 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877 http://marc.info/?l=bugtraq&m=126046355120442&w=2 http://www.securityfocus.com/archive/1/508355/100/0/threaded http://www.securityfocus.com/bid/37261 http://www.securityfocus.com/bid/37347 https://exchange.xforce.ibmcloud.com/vulnerabilities/54657 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2009-4178 – HP OpenView Network Node Manager (OV NNM) - 'OvWebHelp.exe' CGI Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-4178
Heap-based buffer overflow in OvWebHelp.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long Topic parameter. Desbordamiento de búfer basado en memoria dinámica (heap) en OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar código arbitrario a través del parámetro "long Topic". • https://www.exploit-db.com/exploits/16792 https://www.exploit-db.com/exploits/11974 http://dvlabs.tippingpoint.com/advisory/TPTI-09-11 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877 http://marc.info/?l=bugtraq&m=126046355120442&w=2 http://www.securityfocus.com/archive/1/508354/100/0/threaded http://www.securityfocus.com/bid/37261 http://www.securityfocus.com/bid/37340 https://exchange.xforce.ibmcloud.com/vulnerabilities/54659 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2009-4177
https://notcve.org/view.php?id=CVE-2009-4177
Buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long HTTP Host header. Desbordamiento de búfer en webappmon.exe en HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar código arbitrario a través de una cabecera larga HTTP en el host. • http://dvlabs.tippingpoint.com/advisory/TPTI-09-10 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877 http://marc.info/?l=bugtraq&m=126046355120442&w=2 http://www.securityfocus.com/archive/1/508353/100/0/threaded http://www.securityfocus.com/bid/37261 https://exchange.xforce.ibmcloud.com/vulnerabilities/54661 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2009-4176
https://notcve.org/view.php?id=CVE-2009-4176
Multiple heap-based buffer overflows in ovsessionmgr.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter to ovlogin.exe. Múltiples desbordamientos del búfer de la pila en ovsessionmgr.exe en HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar codigo arbitrario a través del parámetro largo (1) "userid" o (2) "passwd" a ovlogin.exe. • http://dvlabs.tippingpoint.com/advisory/TPTI-09-09 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877 http://marc.info/?l=bugtraq&m=126046355120442&w=2 http://www.securityfocus.com/archive/1/508352/100/0/threaded http://www.securityfocus.com/bid/37261 http://www.securityfocus.com/bid/37330 https://exchange.xforce.ibmcloud.com/vulnerabilities/54660 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2009-3846
https://notcve.org/view.php?id=CVE-2009-3846
Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via a long (1) userid or (2) passwd parameter. Múltiples desbordamientos de búfer en ovlogin.exe in HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar código arbitrario a través de una parámetro largo (1) "userid" o (2) "passwd". • http://dvlabs.tippingpoint.com/advisory/TPTI-09-08 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877 http://marc.info/?l=bugtraq&m=126046355120442&w=2 http://www.securityfocus.com/archive/1/508350/100/0/threaded http://www.securityfocus.com/bid/37261 http://www.securityfocus.com/bid/37295 https://exchange.xforce.ibmcloud.com/vulnerabilities/54658 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •