Vulnerabilites related to hp - hpovnnm.hpovmib
Vulnerability from fkie_nvd
Published
2009-06-11 15:30
Modified
2025-04-09 00:30
Severity ?
Summary
Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.
References
cve@mitre.orghttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810
cve@mitre.orghttp://marc.info/?l=bugtraq&m=124457320614552&w=2Patch
cve@mitre.orghttp://marc.info/?l=bugtraq&m=124457320614552&w=2Patch
cve@mitre.orghttp://secunia.com/advisories/35408Vendor Advisory
cve@mitre.orghttp://securitytracker.com/id?1022360Patch
cve@mitre.orghttp://www.securityfocus.com/bid/35267Patch
cve@mitre.orghttp://www.vupen.com/english/advisories/2009/1549
af854a3a-2127-422b-91ae-364da2661108http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=124457320614552&w=2Patch
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=124457320614552&w=2Patch
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/35408Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1022360Patch
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/35267Patch
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/1549
Impacted products
Vendor Product Version
hp openview_network_node_manager 7.51
hp openview_network_node_manager 7.51
hp openview_network_node_manager 7.51
hp openview_network_node_manager 7.51
hp openview_network_node_manager 7.53
hp openview_network_node_manager 7.53
hp openview_network_node_manager 7.53
hp openview_network_node_manager 7.53
hp hpovnnm.hpovmib 1.30.000
hp hpovnnm.hpovsnmp 1.30.000


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*",
                     matchCriteriaId: "6692E05F-4864-449F-8A52-9001028D8C44",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*",
                     matchCriteriaId: "2A40F2C6-AFF9-4D63-ACD0-A9D37160BA3D",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*",
                     matchCriteriaId: "FC1DA299-A180-4078-9172-67D116840D29",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*",
                     matchCriteriaId: "FED610E9-7639-48FE-8B4F-B394A7EEC7C9",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*",
                     matchCriteriaId: "C1935DA4-A1AF-4867-BCB1-F5BB75360702",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*",
                     matchCriteriaId: "769ED1A5-C3C5-404E-8040-655D69C2AA88",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*",
                     matchCriteriaId: "186EFE05-AC1C-48FF-91B7-0CCD49FEABCC",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*",
                     matchCriteriaId: "D5CE1F56-FA80-416D-8F42-C1C291F0965C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:hp:hpovnnm.hpovmib:1.30.000:*:*:*:*:*:*:*",
                     matchCriteriaId: "F0D6A709-8FA3-4DAD-8CDE-5D09E7020B07",
                     vulnerable: false,
                  },
                  {
                     criteria: "cpe:2.3:a:hp:hpovnnm.hpovsnmp:1.30.000:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3AD984B-D366-4F16-A1C4-0E8018460EE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.",
      },
      {
         lang: "es",
         value: "Vulnerabilidad inespecífica en HP OpenView Network Node Manager (OV NNM) v7.51 y v7.53, cuando se utiliza como SNMP (también conocido como HPOvNNM.HPOVSNMP) anteriores a v1.30.009 y MIB (también conocido como HPOvNNM.HPOVMIB) anteriores a v1.30.009, permite a atacantes remotos ejecutar código arbitrario o producir una denegación de servicio a través de vectores desconocidos.",
      },
   ],
   id: "CVE-2009-1420",
   lastModified: "2025-04-09T00:30:58.490",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
   },
   published: "2009-06-11T15:30:00.360",
   references: [
      {
         source: "cve@mitre.org",
         url: "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
         ],
         url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
         ],
         url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/35408",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
         ],
         url: "http://securitytracker.com/id?1022360",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Patch",
         ],
         url: "http://www.securityfocus.com/bid/35267",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.vupen.com/english/advisories/2009/1549",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
         ],
         url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
         ],
         url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://secunia.com/advisories/35408",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
         ],
         url: "http://securitytracker.com/id?1022360",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
         ],
         url: "http://www.securityfocus.com/bid/35267",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.vupen.com/english/advisories/2009/1549",
      },
   ],
   sourceIdentifier: "cve@mitre.org",
   vulnStatus: "Deferred",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

cve-2009-1420
Vulnerability from cvelistv5
Published
2009-06-11 15:00
Modified
2024-08-07 05:13
Severity ?
Summary
Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.
References
http://marc.info/?l=bugtraq&m=124457320614552&w=2vendor-advisory, x_refsource_HP
http://www.securityfocus.com/bid/35267vdb-entry, x_refsource_BID
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810third-party-advisory, x_refsource_IDEFENSE
http://securitytracker.com/id?1022360vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/35408third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2009/1549vdb-entry, x_refsource_VUPEN
http://marc.info/?l=bugtraq&m=124457320614552&w=2vendor-advisory, x_refsource_HP
Impacted products
Vendor Product Version
n/a n/a Version: n/a
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-07T05:13:25.382Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  name: "HPSBMA02430",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_HP",
                     "x_transferred",
                  ],
                  url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
               },
               {
                  name: "35267",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/35267",
               },
               {
                  name: "20090626 HP Network Node Manager rping Stack Buffer Overflow Vulnerability",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_IDEFENSE",
                     "x_transferred",
                  ],
                  url: "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810",
               },
               {
                  name: "1022360",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://securitytracker.com/id?1022360",
               },
               {
                  name: "35408",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_SECUNIA",
                     "x_transferred",
                  ],
                  url: "http://secunia.com/advisories/35408",
               },
               {
                  name: "ADV-2009-1549",
                  tags: [
                     "vdb-entry",
                     "x_refsource_VUPEN",
                     "x_transferred",
                  ],
                  url: "http://www.vupen.com/english/advisories/2009/1549",
               },
               {
                  name: "SSRT080094",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_HP",
                     "x_transferred",
                  ],
                  url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2009-06-09T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2009-07-11T09:00:00",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               name: "HPSBMA02430",
               tags: [
                  "vendor-advisory",
                  "x_refsource_HP",
               ],
               url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
            },
            {
               name: "35267",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/35267",
            },
            {
               name: "20090626 HP Network Node Manager rping Stack Buffer Overflow Vulnerability",
               tags: [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
               ],
               url: "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810",
            },
            {
               name: "1022360",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://securitytracker.com/id?1022360",
            },
            {
               name: "35408",
               tags: [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
               ],
               url: "http://secunia.com/advisories/35408",
            },
            {
               name: "ADV-2009-1549",
               tags: [
                  "vdb-entry",
                  "x_refsource_VUPEN",
               ],
               url: "http://www.vupen.com/english/advisories/2009/1549",
            },
            {
               name: "SSRT080094",
               tags: [
                  "vendor-advisory",
                  "x_refsource_HP",
               ],
               url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2009-1420",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Stack-based buffer overflow in rping in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when used with SNMP (aka HPOvNNM.HPOVSNMP) before 1.30.009 and MIB (aka HPOvNNM.HPOVMIB) before 1.30.009, allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "HPSBMA02430",
                     refsource: "HP",
                     url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
                  },
                  {
                     name: "35267",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/35267",
                  },
                  {
                     name: "20090626 HP Network Node Manager rping Stack Buffer Overflow Vulnerability",
                     refsource: "IDEFENSE",
                     url: "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=810",
                  },
                  {
                     name: "1022360",
                     refsource: "SECTRACK",
                     url: "http://securitytracker.com/id?1022360",
                  },
                  {
                     name: "35408",
                     refsource: "SECUNIA",
                     url: "http://secunia.com/advisories/35408",
                  },
                  {
                     name: "ADV-2009-1549",
                     refsource: "VUPEN",
                     url: "http://www.vupen.com/english/advisories/2009/1549",
                  },
                  {
                     name: "SSRT080094",
                     refsource: "HP",
                     url: "http://marc.info/?l=bugtraq&m=124457320614552&w=2",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2009-1420",
      datePublished: "2009-06-11T15:00:00",
      dateReserved: "2009-04-24T00:00:00",
      dateUpdated: "2024-08-07T05:13:25.382Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}