Description
Stack-based buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via vectors involving the sel and arg parameters to jovgraph.exe.
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/508357/100/0/threaded
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/37261
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=126046355120442&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54655
Patch, Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01950877
Vendor Advisory x_refsource_misc
http://dvlabs.tippingpoint.com/advisory/TPTI-09-14
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/37343
Scores
EPSS
0.1706
EPSS Percentile
95.1%
Details
CWE
CWE-119
Status
published
Products (3)
hp/openview_network_node_manager
7.0.1 (4 CPE variants)
hp/openview_network_node_manager
7.51 (4 CPE variants)
hp/openview_network_node_manager
7.53 (4 CPE variants)
Published
Dec 10, 2009
Tracked Since
Feb 18, 2026