Back to search
CVE-2009-3849
Published: Dec 10, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) a long Template parameter to nnmRptConfig.exe, related to the strcat function; or (2) a long Oid parameter to snmp.exe.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20091209 ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
SSRT090130
vendor-advisory
x_refsource_HP
37299
vdb-entry
x_refsource_BID
hp-ovnnm-nnmrptconfig-bo(54652)
vdb-entry
x_refsource_XF
hp-openviewnnm-snmp-bo(54654)
vdb-entry
x_refsource_XF
37298
vdb-entry
x_refsource_BID
37261
vdb-entry
x_refsource_BID
SSRT090257
vendor-advisory
x_refsource_HP
http://zerodayinitiative.com/advisories/ZDI-09-097/
x_refsource_MISC
20091209 ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
http://zerodayinitiative.com/advisories/ZDI-09-095/
x_refsource_MISC
HPSBMA02483
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now