Buffer Overflow in HP OpenView Network Node Manager
CVE-2010-2704

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 28 July 2010

Summary

The vulnerability exists in HP OpenView Network Node Manager (OV NNM) versions 7.51 and 7.53, where a buffer overflow in the nnmrptconfig.exe component allows remote attackers to send specially crafted HTTP requests. These requests can result in the execution of arbitrary code on the affected systems, thereby compromising security and integrity.

References

http://www.vupen.com/english/advisories/2010/1866

vdb-entryx_refsource_VUPEN

http://marc.info/?l=bugtraq&m=127972286628707&w=2

vendor-advisoryx_refsource_HP

http://www.securityfocus.com/bid/41839

vdb-entryx_refsource_BID

EPSS Score

40% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 28, 2010
Vulnerability Reserved
Jul 12, 2010