CVSS: 7.5EPSS: 19%CPEs: 8EXPL: 3CVE-2009-3840 – HP OpenView Network Node Manager (OV NNM) 7.53 - Invalid DB Error Code
https://notcve.org/view.php?id=CVE-2009-3840
19 Nov 2009 — The embedded database engine service (aka ovdbrun.exe) in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to cause a denial of service (daemon crash) via an invalid Error Code field in a packet. El servicio del motor de base de datos integrado (también conocido como avdburn.exe) en HP OpenView Network Node Manager OV NNM) v7.51 y v7.53, permite a atacantes remotos provocar una denegación de servicio (caída de demonio) a través de un campo "Error Code" en no válido sobre un pa... • https://www.exploit-db.com/exploits/10176 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2009-3977
https://notcve.org/view.php?id=CVE-2009-3977
19 Nov 2009 — Multiple buffer overflows in a certain ActiveX control in ActiveDom.ocx in HP OpenView Network Node Manager (OV NNM) 7.53 might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via a long string argument to the (1) DisplayName, (2) AddGroup, (3) InstallComponent, or (4) Subscribe method. NOTE: this issue is not a vulnerability in many environments, because the control is not marked as safe for scripting and would not execute with default Internet Explo... • http://seclists.org/fulldisclosure/2009/Nov/199 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2009-2298
https://notcve.org/view.php?id=CVE-2009-2298
02 Jul 2009 — Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.53 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, possibly involving a CGI request to webappmon.exe. NOTE: this may overlap CVE-2009-1420. Desbordamiento de búfer basado en pila en rping en HP OpenView Network Node Manager (OV NNM) v7.53 en Linux permite a los atacantes remotos ejecutar arbitrariamente código a través de vectores no especificados, posiblemente relativos a peticiones CGI p... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 58%CPEs: 10EXPL: 0CVE-2009-1420
https://notcve.org/view.php?id=CVE-2009-1420
11 Jun 2009 — Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors. Vulnerabilidad inespecífica en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53, cuando se utiliza como SNMP (también conocido como HPOvNNM.HPOVSNMP) anteriores a v1.30.009 y MIB (también conocido como ... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810 •
CVSS: 10.0EPSS: 17%CPEs: 3EXPL: 0CVE-2009-0720
https://notcve.org/view.php?id=CVE-2009-0720
05 May 2009 — Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via unknown vectors. Vulnerabilidad inespecífica en HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 permite a atacantes remotos ejecutar código de forma arbitraria a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=124146030732511&w=2 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 66%CPEs: 3EXPL: 0CVE-2008-2438
https://notcve.org/view.php?id=CVE-2008-2438
28 Apr 2009 — Integer overflow in ovalarmsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a crafted command to TCP port 2954, which triggers a heap-based buffer overflow. El desbordamiento de enteros en el archivo ovalarmsrv.exe en OpenView Network Node Manager (OV NNM) de HP versiones 7.01, 7.51 y 7.53, permite a los atacantes remotos ejecutar código arbitrario por medio de un comando diseñado al puerto TCP 2954, conllevando a un desbordamien... • http://osvdb.org/54107 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2008-4560
https://notcve.org/view.php?id=CVE-2008-4560
08 Feb 2009 — HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to obtain sensitive information via (1) a crafted request to the nnmRptConfig.exe CGI program, which reveals the pathname of log directories; or (2) a crafted parameter in a request to the ovlaunch.exe CGI program, which reveals configuration details. NOTE: this issue may be partially covered by CVE-2009-0205. HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53, permite a atacantes remotos obtener información ... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 4%CPEs: 12EXPL: 0CVE-2008-4562
https://notcve.org/view.php?id=CVE-2008-4562
08 Feb 2009 — Buffer overflow in the ovlaunch CGI program in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 on Windows allows remote attackers to execute arbitrary code via a crafted Host parameter. NOTE: this issue may be partially covered by CVE-2009-0205. Desbordamiento de búfer en el programa CGI en HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53 sobre Windows, permite a atacantes remotos ejecutar código de su elección a través del parámetro "Host" manipulado. NOTA: esta cuestión se en... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 12EXPL: 0CVE-2008-4559
https://notcve.org/view.php?id=CVE-2008-4559
08 Feb 2009 — HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205. HP OpenView Network Node Manager (OV NNM) v7.01, v7.51, y v7.53, permite a atacantes remotos ejecutar código de su elección a través de caracteres de consola en los campos de argumentos a los programas CGI (1) webappmon.exe o (2) OpenVi... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 51%CPEs: 4EXPL: 3CVE-2008-3544 – HP OpenView Network Node Manager (OV NNM) 7.53 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2008-3544
13 Oct 2008 — Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954. Múltiples desbordamientos de bufer basados en pila en ovalarmsrv de HP OpenView Network Node Manager(OV NNM) 7.51, 7.01 y, posiblemente, 7.50 y 7.53, permiten a at... • https://www.exploit-db.com/exploits/5396 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •