Buffer Overflow in HP OpenView Network Node Manager Affects Remote Execution
CVE-2011-0265

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 January 2011

Summary

The buffer overflow vulnerability in nnmRptConfig.exe of HP OpenView Network Node Manager versions 7.51 and 7.53 presents a security risk that allows remote attackers to execute arbitrary code by sending a specially crafted long data_select1 parameter. This flaw can lead to unauthorized actions, impacting the confidentiality, integrity, and availability of the system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64651

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/515628

vendor-advisoryx_refsource_HP

http://www.vupen.com/english/advisories/2011/0085

vdb-entryx_refsource_VUPEN

EPSS Score

49% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 13, 2011
Vulnerability Reserved
Dec 23, 2010