Summary
This host is running HP OpenView Network Node Manager and is prone to code execution vulnerabilities.
Impact
Successful exploitation will allow attacker to execute arbitrary code in the context of an application.
Impact Level: System/Application
Solution
Apply the patch from below link,
http://support.openview.hp.com/selfsolve/patches
*****
NOTE : Ignore this warning, if above mentioned patch is already applied.
*****
Insight
The flaw is due to an unspecified error when processing specially crafted data, which could allow remote attackers to crash an affected process or execute arbitrary code via a malicious request.
Affected
HP OpenView Network Node Manager versions 7.01, 7.51 and 7.53
References
Severity
Classification
-
CVE CVE-2009-0720 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- ASP Inline Corporate Calendar SQL injection
- AlienVault Open Source SIEM (OSSIM) 'timestamp' Parameter Directory Traversal Vulnerability
- Adobe ColdFusion Authentication Bypass Vulnerability
- ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
- Adiscon LogAnalyzer Multiple SQL Injection and XSS Vulnerabilities