CVE-2008-4559
HP OpenView Network Node Manager 7.01, 7.51, 7.53 - Remote Code Execution via Shell Metacharacters in CGI Arguments
Title source: llmDescription
HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610
Patch third-party-advisory
x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=770
Scores
EPSS
0.0350
EPSS Percentile
87.8%
Details
CWE
CWE-20
Status
published
Products (3)
hp/openview_network_node_manager
7.0.1 (4 CPE variants)
hp/openview_network_node_manager
7.51 (4 CPE variants)
hp/openview_network_node_manager
7.53 (4 CPE variants)
Published
Feb 08, 2009
Tracked Since
Feb 18, 2026