Check Point Advisories

Update Protection against HP OpenView Network Node Manager rping Stack Buffer Overflow

Check Point Reference: CPAI-2009-201
Date Published: 2 Jul 2009
Severity: Critical
Last Updated: Thursday 01 January, 2009
Source: Secunia Advisory: 35408
Industry Reference:

CVE-2009-1420

Protection Provided by:
Who is Vulnerable? HP OpenView Network Node Manager 7.51
HP OpenView Network Node Manager 7.53 prior to rev. 1.30.009
Vulnerability Description A buffer overflow vulnerability exists in HP Network Node Manager, a software application designed for management, maintenance and monitoring of networks and network devices. The flaw is due to a boundary error when processing crafted packets sent to the server. Remote attackers could exploit this vulnerability by sending a crafted HTTP request to the affected TCP port. The vulnerability could allow remote attackers to execute arbitrary code on a vulnerable system.
Vulnerability DetailsThe vulnerability exists due to insufficient boundary checks when handling overly long hostname values. Remote attackers could exploit this vulnerability by sending a carefully crafted packet to a vulnerable HP OpenView Network Node Manager server.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK