About Us | Contact Us

 


 

VUPEN Free Resources
 
  VUPEN Security Advisories
 
  VUPEN Security Blog & News
  Zero-day Attacks Monitor
  Daily Security Mailinglist
  Explanation of Terms
  Advanced Search Engine
 
   

HP OpenView Network Node Manager Multiple Remote Vulnerabilities

VUPEN ID VUPEN/ADV-2009-0351
CVE ID CVE-2008-4559 - CVE-2008-4560 - CVE-2008-4562 - CVE-2009-0205
 
CWE ID Available in VUPEN VNS Customer Area
CVSS V2 Available in VUPEN VNS Customer Area
Rated as Critical 
Impact Available in VUPEN VNS Customer Area
Authentication Level Available in VUPEN VNS Customer Area
Access Vector Available in VUPEN VNS Customer Area
Release Date 2009-02-06
Share Twitter LinkedIn Facebook Delicious Digg Slashdot

Technical Description

Multiple vulnerabilities have been identified in HP OpenView Network Node Manager (OV NNM), which could be exploited by remote attackers to gain knowledge of sensitive information or compromise a vulnerable system.

The first issue is caused by a buffer overflow error in the "ovlaunch" CGI application when processing the "Host" parameter, which could allow attackers to overwrite certain pointers and execute arbitrary code via a specially crafted request.

The second vulnerability is caused by input validation errors in the "webappmon.exe" and "OpenView5.exe" applications when processing user-supplied arguments while starting external programs, which could allow attackers to inject and execute arbitrary commands.

The third issue is caused due to the "nnmRptConfig.exe" CGI application disclosing the location of log directories when responding to specifically crafted requests.

The fourth weakness is caused due to the "ovlaunch.exe" CGI application returning various configuration details when responding to requests containing a malformed parameter.

Affected Products

HP OpenView Network Node Manager (OV NNM) version 7.01
HP OpenView Network Node Manager (OV NNM) version 7.51
HP OpenView Network Node Manager (OV NNM) version 7.53

Solution 

Apply patches :
http://support.openview.hp.com/selfsolve/patches

References

http://www.vupen.com/english/advisories/2009/0351
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=772
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=771
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=770

In-depth Binary Analysis 

Available in customer area as part of VUPEN Binary Analysis & Exploits Service and VUPEN Vulnerability Notification Service Ultimate Feed Edition.
 
Private Exploit or PoC 

Available in customer area as part of VUPEN Binary Analysis & Exploits Service and VUPEN Vulnerability Notification Service Ultimate Feed Edition.
 
Credits 

Vulnerabilities reported by iDefense Labs.

Changelog 

2009-02-06 : Initial release
2009-02-09 : Updated Description

Feedback 

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Monthly Statistics 

 

 VUPEN Security Advisories By Criticality: Aug 2010


  Critical Risk

 : 0%

  High Risk		 : 0%

  Moderate Risk		 : 0%

  Low Risk		 : 100%

Get a real-time view of the vulnerabilities affecting your systems using the VUPEN VNS reporting capabilities.
 
 

Try VUPEN VNS 

 

 





© 2004-2010 VUPEN Security - Copyright - Privacy Policy