CVE-2010-1964

HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow

Title source: metasploit

Description

Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CAN-683.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17041

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by bitform · textlocalwindows

https://www.exploit-db.com/exploits/14256

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by jduck · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_nnm_ovwebsnmpsrv_main.rb

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://osvdb.org/65552

[Patch] http://seclists.org/bugtraq/2010/Jun/152

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-10-108

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511854/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/40873

[Third Party Advisory] http://securityreason.com/securityalert/8155

Scores

EPSS 0.7949

EPSS Percentile 99.1%

Details

Status published

Products (2)

hp/openview_network_node_manager 7.51 (5 CPE variants)

hp/openview_network_node_manager 7.53 (5 CPE variants)

Published Jun 17, 2010

Tracked Since Feb 18, 2026