Buffer Overflow Vulnerability in HP OpenView Network Node Manager
CVE-2010-1553

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 May 2010

Summary

A vulnerability has been identified in the HP OpenView Network Node Manager's getnnmdata.exe component. This issue arises due to a stack-based buffer overflow that can be triggered by manipulating the MaxAge parameter. When successfully exploited, this flaw allows remote attackers to execute arbitrary code on the affected system. Users are strongly advised to update to the latest version to mitigate the risks associated with this vulnerability.

References

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

http://zerodayinitiative.com/advisories/ZDI-10-084/

x_refsource_MISC

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

EPSS Score

85% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 13, 2010
Vulnerability Reserved
Apr 26, 2010