Code Execution Vulnerability in HP OpenView Network Node Manager
CVE-2011-0261

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 January 2011

Summary

A potential vulnerability exists in the jovgraph.exe component of HP OpenView Network Node Manager (versions 7.51 and 7.53). This vulnerability allows remote attackers to execute arbitrary code on the affected system by leveraging a malformed displayWidth option in the arg parameter. This flaw may expose critical system resources to unauthorized access and manipulation, emphasizing the importance of implementing security patches and updates.

References

http://www.securityfocus.com/archive/1/515628

vendor-advisoryx_refsource_HP

http://www.vupen.com/english/advisories/2011/0085

vdb-entryx_refsource_VUPEN

http://www.zerodayinitiative.com/advisories/ZDI-11-003/

x_refsource_MISC

EPSS Score

43% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 13, 2011
Vulnerability Reserved
Dec 23, 2010