CVE-2009-3845

Published: Dec 10, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The port-3443 HTTP server in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostname parameter to unspecified Perl scripts.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://zerodayinitiative.com/advisories/ZDI-09-094/

x_refsource_MISC

20091209 ZDI-09-094: Hewlett-Packard OpenView NNM Multiple Command Injection Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

37261

vdb-entry

x_refsource_BID

SSRT090257

vendor-advisory

x_refsource_HP

SSRT090037

vendor-advisory

x_refsource_HP

hp-openviewnnm-hostname-command-execution(54651)

vdb-entry

x_refsource_XF

37300

vdb-entry

x_refsource_BID

HPSBMA02483

vendor-advisory

x_refsource_HP

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-3845

Description

Affected Products

References