Description
ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain requests that specify a large number of sub-arguments, which triggers a NULL pointer dereference due to memory allocation failure.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1019839
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29796
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/28745
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41695
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/490771
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1214/references
Exploit x_refsource_misc
http://aluigi.altervista.org/adv/closedviewx-adv.txt
Scores
EPSS
0.0335
EPSS Percentile
87.5%
Details
CWE
CWE-399
Status
published
Products (2)
hp/openview_network_node_manager
7.51
hp/openview_network_node_manager
7.53
Published
Apr 16, 2008
Tracked Since
Feb 18, 2026