CVE-2007-3872

HP OpenView Operations < a.07.50 - Remote Code Execution via Crafted Requests

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-3872. PoCs published by Metasploit, including Metasploit module exploits/windows/misc/hp_ovtrace.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in HP OpenView Operations A.07.50 via a crafted packet sent to port 5051. It includes a payload encoder and a return address for Windows 2000 Advanced Server.

Description

Multiple stack-based buffer overflows in the Shared Trace Service (OVTrace) service for HP OpenView Operations A.07.50 for Windows, and possibly earlier versions, allow remote attackers to execute arbitrary code via certain crafted requests.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16429

This Metasploit module exploits a stack buffer overflow in HP OpenView Operations A.07.50 via a crafted packet sent to port 5051. It includes a payload encoder and a return address for Windows 2000 Advanced Server.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView Operations A.07.50
No auth needed
Prerequisites: Network access to port 5051 · Target running HP OpenView Operations A.07.50
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_ovtrace.rb

This Metasploit module exploits a stack buffer overflow in HP OpenView Operations A.07.50 by sending a crafted packet to TCP port 5051, allowing remote code execution. The exploit uses a return address override and payload encoding to achieve arbitrary code execution on Windows 2000 Advanced Server.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView Operations A.07.50
No auth needed
Prerequisites: Network access to TCP port 5051 · Target running HP OpenView Operations A.07.50
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (17)

Core 17
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35928
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25255
Patch third-party-advisory x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=574
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2841
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018548
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26394

Scores

EPSS 0.3028
EPSS Percentile 98.0%

Details

Status published
Products (2)
hp/openview_operations < a.07.50
hp/shared_trace_service < a.07.50
Published Aug 09, 2007
Tracked Since Feb 18, 2026