Stack-Based Buffer Overflow in HP OpenView Network Node Manager
CVE-2010-1555

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 May 2010

Summary

A stack-based buffer overflow vulnerability exists in the getnnmdata.exe component of HP OpenView Network Node Manager, versions 7.01, 7.51, and 7.53. This issue arises from the improper handling of the Hostname parameter, allowing remote attackers to exploit this weakness. By supplying specially crafted input, an attacker can potentially execute arbitrary code on the affected system, leading to unauthorized access and control.

References

http://marc.info/?l=bugtraq&m=127360750704351&w=2

vendor-advisoryx_refsource_HP

http://www.securityfocus.com/archive/1/511250/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/40072

vdb-entryx_refsource_BID

EPSS Score

81% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 13, 2010
Vulnerability Reserved
Apr 26, 2010