Buffer Overflow in HP OpenView Network Node Manager Affects NNM Versions 7.51 and 7.53
CVE-2011-0266

Currently unrated

Key Information:

Vendor: HP
Status: Openview Network Node Manager
Vendor: CVE Published:; 13 January 2011

Summary

The vulnerability allows remote attackers to exploit a buffer overflow in the nnmRptConfig.exe component of HP OpenView Network Node Manager. By sending specially crafted requests containing excessively long nameParams parameters, an attacker could potentially execute arbitrary code on the affected systems. This vulnerability underscores the critical importance of applying patches and updates to network management tools to maintain a secure environment.

References

http://www.securityfocus.com/archive/1/515628

vendor-advisoryx_refsource_HP

http://www.vupen.com/english/advisories/2011/0085

vdb-entryx_refsource_VUPEN

http://www.zerodayinitiative.com/advisories/ZDI-11-008/

x_refsource_MISC

EPSS Score

79% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 13, 2011
Vulnerability Reserved
Dec 23, 2010