Stack-based Buffer Overflow in HP OpenView Network Node Manager
CVE-2010-2709

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 5 August 2010

What is CVE-2010-2709?

A stack-based buffer overflow exists in the webappmon.exe component of HP OpenView Network Node Manager versions 7.51 and 7.53. This vulnerability can be exploited by remote attackers who manipulate the OvJavaLocale value in a cookie, potentially enabling them to execute arbitrary code on the affected system. Organizations using these versions should take immediate action to patch this vulnerability to safeguard against potential exploits.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/60880

vdb-entryx_refsource_XF

http://www.exploit-db.com/exploits/14547

exploitx_refsource_EXPLOIT-DB

http://securityreason.com/securityalert/8150

third-party-advisoryx_refsource_SREASON

EPSS Score

85% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 5, 2010
Vulnerability Reserved
Jul 12, 2010