CVE-2007-6204

Sažetak

Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.exe, (2) OpenView5.exe, (3) snmpviewer.exe, and (4) webappmon.exe, as demonstrated via a long Action parameter to OpenView5.exe.

Reference

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01188923
http://secunia.com/advisories/27964
http://securityreason.com/securityalert/3441
http://www.securityfocus.com/archive/1/484704/100/0/threaded
http://www.securityfocus.com/bid/26741
http://www.securitytracker.com/id?1019055
http://www.vupen.com/english/advisories/2007/4111
http://www.zerodayinitiative.com/advisories/ZDI-07-071.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/38892
https://www.exploit-db.com/exploits/4724

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-10-2018 - 21:51

Objavljeno

13-12-2007 - 21:46