CVE-2010-1555

HP OpenView Network Node Manager <7.53 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17047

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by S2 Crew · pythonremotewindows

https://www.exploit-db.com/exploits/14182

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_getnnmdata_hostname.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=127360750704351&w=2

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-10-086/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511250/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/40072

Scores

EPSS 0.7979

EPSS Percentile 99.1%

Details

CWE

CWE-119

Status published

Products (3)

hp/openview_network_node_manager 7.0.1

hp/openview_network_node_manager 7.51 (5 CPE variants)

hp/openview_network_node_manager 7.53 (5 CPE variants)

Published May 13, 2010

Tracked Since Feb 18, 2026