Description
Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdoswindows
https://www.exploit-db.com/exploits/31629
References (9)
Core 9
Core References
Third Party Advisory x_refsource_misc
http://aluigi.altervista.org/adv/closedview-adv.txt
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=121321155405849&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41737
Exploit x_refsource_misc
http://aluigi.org/poc/closedview.zip
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1159
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/28689
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29713
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_hp
http://www.securityfocus.com/archive/1/493781/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1019821
Scores
EPSS
0.3036
EPSS Percentile
96.7%
Details
CWE
CWE-189
Status
published
Products (17)
hp/openview_network_node_manager
4.11
hp/openview_network_node_manager
5.0.1
hp/openview_network_node_manager
5.01
hp/openview_network_node_manager
6.0.1
hp/openview_network_node_manager
6.1
hp/openview_network_node_manager
6.2
hp/openview_network_node_manager
6.4
hp/openview_network_node_manager
6.10
hp/openview_network_node_manager
6.20
hp/openview_network_node_manager
6.31
... and 7 more
Published
Apr 16, 2008
Tracked Since
Feb 18, 2026