CVE-2010-1554

HP OpenView Network Node Manager <7.53 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17040

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by S2 Crew · pythonremotewindows

https://www.exploit-db.com/exploits/14181

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_getnnmdata_icount.rb

View Code ZIP pw:eip

References (5)

[Mailing List] http://marc.info/?l=bugtraq&m=127360750704351&w=2

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-10-085/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511249/100/0/threaded

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/14181

[Third Party Advisory] http://securityreason.com/securityalert/8154

Scores

EPSS 0.8144

EPSS Percentile 99.2%

Details

CWE

CWE-119

Status published

Products (3)

hp/openview_network_node_manager 7.0.1

hp/openview_network_node_manager 7.51 (5 CPE variants)

hp/openview_network_node_manager 7.53 (5 CPE variants)

Published May 13, 2010

Tracked Since Feb 18, 2026