CVE-2010-2710
https://notcve.org/view.php?id=CVE-2010-2710
Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unknown vectors. Vulnerabilidad sin especificar en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53 permite a atacantes remotos ejecutar código de su elección a través de vectores desconocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980 •
CVE-2010-2709 – HP Network Node Manager (NMM) - CGI 'webappmon.exe OvJavaLocale' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-2709
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie. Desbordamiento de búfer basado en pila en webappmon.exe de HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53 permite a atacantes remotos ejecutar código a su elección a través de un valor OvJavaLocale largo en una cookie. • https://www.exploit-db.com/exploits/17029 https://www.exploit-db.com/exploits/14547 http://seclists.org/bugtraq/2010/Aug/21 http://securityreason.com/securityalert/8150 http://securitytracker.com/id?1024274 http://www.coresecurity.com/content/hp-nnm-ovjavalocale-buffer-overflow http://www.exploit-db.com/exploits/14547 http://www.securityfocus.com/bid/42154 https://exchange.xforce.ibmcloud.com/vulnerabilities/60880 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-2704
https://notcve.org/view.php?id=CVE-2010-2704
Buffer overflow in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long HTTP request to nnmrptconfig.exe. Desbordamiento de búfer en HP OpenView Network Node Manager (OV NNM) 7.51 y 7.53 permite a atacantes remotos ejecutar código de su elección mediante una petición HTTP larga a nnmrptconfig.exe. • http://marc.info/?l=bugtraq&m=127972286628707&w=2 http://marc.info/?l=bugtraq&m=127974889107645&w=2 http://secunia.com/advisories/40697 http://www.attrition.org/pipermail/vim/2010-July/002374.html http://www.securityfocus.com/archive/1/512543/100/0/threaded http://www.securityfocus.com/bid/41839 http://www.vupen.com/english/advisories/2010/1866 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-2703 – Hewlett-Packard OpenView NNM webappmon.exe execvp_nc Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2703
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbitrary code via a long HTTP request to webappmon.exe. Desbordamiento de búfer basado en pila en la función execvp_nc el módulo ov.dll en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53, ejecutado sobre Windows, permite a atacantes remotos ejecutar código de su elección a través de una petición HTTP larga a webappmon.exe. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ov.dll module which is loaded by the webappmon.exe CGI program. This DLL defines a function execvp_nc which unsafely concatenates a controllable command string into a statically allocated stack buffer. • https://www.exploit-db.com/exploits/14916 https://www.exploit-db.com/exploits/17030 http://marc.info/?l=bugtraq&m=127973001009749&w=2 http://osvdb.org/66514 http://secunia.com/advisories/40686 http://securityreason.com/securityalert/8161 http://www.attrition.org/pipermail/vim/2010-July/002374.html http://www.exploit-db.com/exploits/14916 http://www.securityfocus.com/archive/1/512544/100/0/threaded http://www.securityfocus.com/archive/1/512552/100/0/threaded http:& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-1964 – HP OpenView NNM ovwebsnmpsrv.exe Command Line Argument Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-1964
Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CAN-683. Vulnerabilidad no especificada en HP OpenView Network Node Manager (OV NNM) v7.51 y v753 permite a atacantes remotos ejecutar código de su elección a través de vectores desconocidos, también conocida como ZDI-CAN-683. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ovwebsnmpsrv.exe process which can be reached remotely through the jovgraph.exe CGI program. By supplying overly large values to variables passed through an HTTP request a strcpy call within the main() function can be made to overflow a static buffer. • https://www.exploit-db.com/exploits/14256 https://www.exploit-db.com/exploits/17041 http://osvdb.org/65552 http://seclists.org/bugtraq/2010/Jun/152 http://securityreason.com/securityalert/8155 http://www.securityfocus.com/archive/1/511854/100/0/threaded http://www.securityfocus.com/bid/40873 http://www.zerodayinitiative.com/advisories/ZDI-10-108 •