CVE-2008-0068

Sažetak

Directory traversal vulnerability in OpenView5.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to read arbitrary files via directory traversal sequences in the Action parameter.

Reference

http://aluigi.altervista.org/adv/closedviewx-adv.txt
http://marc.info/?l=bugtraq&m=121553649611253&w=2
http://secunia.com/advisories/29796
http://secunia.com/secunia_research/2008-4/advisory/
http://securityreason.com/securityalert/3814
http://www.osvdb.org/44359
http://www.securityfocus.com/archive/1/490771
http://www.securityfocus.com/archive/1/490834/100/0/threaded
http://www.securityfocus.com/bid/28745
http://www.securitytracker.com/id?1019838
http://www.securitytracker.com/id?1019839
http://www.vupen.com/english/advisories/2008/1214/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41790

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

15-10-2018 - 21:57

Objavljeno

16-04-2008 - 18:05