HP OpenView Network Node Manager XSS Vulnerability Network Vulnerability

Summary

This host is running HP OpenView Network Node Manager, which is prone to Cross Site Scripting vulnerability.

Impact

Successful exploitation will allow attacker to execute arbitrary codes. Impact Level: Application

Solution

Apply patches or upgrade to the latest version. http://welcome.hp.com/country/us/en/support.html ****** NOTE: Windows platform is not affected. ******

Insight

The flaws are due to errors in HP OpenView NNM 'Network Node Manager' program.

Affected

HP OpenView Network Node Manager versions 7.01, 7.51 and 7.53 on HP-UX, Linux, and Solaris.

References

http://secunia.com/Advisories/32800
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-5000

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-5000, CVE-2007-6388

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Tiles Multiple XSS Vulnerability
Apache Tomcat DOS Device Name XSS
Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability
Admidio get_file.php Remote File Disclosure Vulnerability
Ampache Reflected Cross Site Scripting Vulnerability

Take action and discover your vulnerabilities