CVE-2001-0552

HP OpenView Network Node Manager 6.1 and Tivoli Netview 5.x-6.x - Remote Code Execution via SNMP Trap Message

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0552. PoCs published by Milo van der Zee.

AI-analyzed exploit summary The exploit leverages a vulnerability in ovactiond (part of HP OpenView and IBM Netview) where a crafted SNMP trap allows remote command execution with the privileges of the ovactiond process. The PoC uses the `snmptrap` command to send a malicious trap containing a command encapsulated in quotes and escapes, leading to arbitrary command execution.

Description

ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Milo van der Zee · textremotemultiple
https://www.exploit-db.com/exploits/20909

The exploit leverages a vulnerability in ovactiond (part of HP OpenView and IBM Netview) where a crafted SNMP trap allows remote command execution with the privileges of the ovactiond process. The PoC uses the `snmptrap` command to send a malicious trap containing a command encapsulated in quotes and escapes, leading to arbitrary command execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: HP OpenView, IBM Netview (ovactiond)
No auth needed
Prerequisites: Network access to the target system running ovactiond · SNMP trap functionality enabled on the target
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2845
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=99201278704545&w=2
Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert
http://www.cert.org/advisories/CA-2001-24.html
Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/952171

Scores

EPSS 0.2620
EPSS Percentile 97.7%

Details

Status published
Products (4)
hp/openview_network_node_manager 5.01
hp/openview_network_node_manager 6.1
ibm/tivoli_netview 5.0
ibm/tivoli_netview 6.0
Published Sep 20, 2001
Tracked Since Feb 18, 2026