CVE-2000-1058

HP OpenView NNM <6.1 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1058. PoCs published by DCIST.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in HP OpenView Node Manager's OverView5 CGI interface. By sending a crafted GET request with a 136-byte string, an attacker can crash the SNMP service or execute arbitrary code.

Description

Buffer overflow in OverView5 CGI program in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, in the SNMP service (snmp.exe), aka the "Java SNMP MIB Browser Object ID parsing problem."

Exploits (1)

exploitdb WORKING POC VERIFIED
by DCIST · textdosmultiple
https://www.exploit-db.com/exploits/20239

This exploit targets a buffer overflow vulnerability in HP OpenView Node Manager's OverView5 CGI interface. By sending a crafted GET request with a 136-byte string, an attacker can crash the SNMP service or execute arbitrary code.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: HP OpenView Node Manager (OverView5 CGI interface)
No auth needed
Prerequisites: Network access to the target's web interface (default port 80)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_hp
http://archives.neohapsis.com/archives/bugtraq/2000-09/0274.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5282
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=97004856403173&w=2

Scores

EPSS 0.1620
EPSS Percentile 96.5%

Details

Status published
Products (3)
hp/openview_network_node_manager 4.11
hp/openview_network_node_manager 5.01
hp/openview_network_node_manager 6.1
Published Dec 11, 2000
Tracked Since Feb 18, 2026