Remote Code Execution Vulnerability in HP OpenView Network Node Manager
CVE-2010-1554

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 May 2010

Summary

A stack-based buffer overflow exists in the getnnmdata.exe component of HP OpenView Network Node Manager. This vulnerability allows remote attackers to execute arbitrary code on the affected system by sending specially crafted data through the iCount parameter. Successful exploitation can lead to a complete compromise of the affected system, making it crucial for organizations utilizing these versions of HP OpenView to take immediate action to protect their networks.

References

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

EPSS Score

81% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 13, 2010
Vulnerability Reserved
Apr 26, 2010