CVE-2010-1552

HP OpenView Network Node Manager <7.53 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act and app parameters.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17039

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by jduck · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_snmpviewer_actapp.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=127360750704351&w=2

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-10-083/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511248/100/0/threaded

[Third Party Advisory] http://securityreason.com/securityalert/8157

Scores

EPSS 0.7995

EPSS Percentile 99.1%

Details

CWE

CWE-119

Status published

Products (3)

hp/openview_network_node_manager 7.0.1

hp/openview_network_node_manager 7.51 (5 CPE variants)

hp/openview_network_node_manager 7.53 (5 CPE variants)

Published May 13, 2010

Tracked Since Feb 18, 2026