Back to search
CVE-2007-0819
Published: Feb 8, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
HP Network Node Manager (NNM) Remote Console 7.50, 7.51, and 7.53 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileges via a Trojan horse executable file or ActiveX component, or a modified bin\ovtrcsvc.exe for the HP Open View Shared Trace Service.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
HPSBMA02448
vendor-advisory
x_refsource_HP
openview-nnm-directory-privilege-escalation(32362)
vdb-entry
x_refsource_XF
22475
vdb-entry
x_refsource_BID
1017609
vdb-entry
x_refsource_SECTRACK
SSRT061231
vendor-advisory
x_refsource_HP
20070208 SecurityVulns.com: HP Network Node Manager remote console weak files permissions
mailing-list
x_refsource_FULLDISC
ADV-2007-0533
vdb-entry
x_refsource_VUPEN
33130
vdb-entry
x_refsource_OSVDB
24066
third-party-advisory
x_refsource_SECUNIA
http://securityvulns.com/news/HP/NNM/RC/WP.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now