CVE-2010-1555

HP OpenView Network Node Manager <7.53 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter.

Exploits (3)

metasploit WORKING POC GREAT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_getnnmdata_hostname.rb

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17047

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by S2 Crew · pythonremotewindows

https://www.exploit-db.com/exploits/14182

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=127360750704351&w=2

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-10-086/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511250/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/40072

Scores

EPSS 0.7979

EPSS Percentile 99.1%

Classification

CWE

CWE-119

Status draft

Affected Products (11)

hp/openview_network_node_manager

Timeline

Published May 13, 2010

Tracked Since Feb 18, 2026