CVE-2010-1960

HP OpenView Network Node Manager 7.51 and 7.53 - Remote Code Execution via Long Invalid Option to jovgraph.exe

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-1960. PoCs published by Metasploit, jduck, including Metasploit module exploits/windows/http/hp_nnm_ovwebsnmpsrv_uro.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in HP OpenView Network Node Manager 7.53 via a long 'arg' parameter in a POST request to 'jovgraph.exe'. It leverages SEH overwriting and a restrictive character set to achieve arbitrary code execution.

Description

Buffer overflow in the error handling functionality in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long, invalid option to jovgraph.exe.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/17043

This Metasploit module exploits a stack-based buffer overflow in HP OpenView Network Node Manager 7.53 via a long 'arg' parameter in a POST request to 'jovgraph.exe'. It leverages SEH overwriting and a restrictive character set to achieve arbitrary code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: HP OpenView Network Node Manager 7.53 prior to NNM_01203
No auth needed
Prerequisites: Network access to the target · Vulnerable version of HP OpenView Network Node Manager
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
by jduck · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_ovwebsnmpsrv_uro.rb

This Metasploit module exploits a stack-based buffer overflow in HP OpenView Network Node Manager 7.53 via a long 'arg' parameter in a POST request to 'jovgraph.exe'. It leverages SEH overwriting and a double-backward jump with Alpha2 encoding to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: HP OpenView Network Node Manager 7.53 prior to NNM_01203
No auth needed
Prerequisites: Network access to the target · Vulnerable version of HP OpenView Network Node Manager
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-10-105/
Patch, Vendor Advisory vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=127602909915281&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40101
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/59249
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/511734/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40637
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1024071

Scores

EPSS 0.6911
EPSS Percentile 99.3%

Details

CWE
CWE-119
Status published
Products (2)
hp/openview_network_node_manager 7.51 (5 CPE variants)
hp/openview_network_node_manager 7.53 (5 CPE variants)
Published Jun 10, 2010
Tracked Since Feb 18, 2026