‘HP OpenView Network Node Manager (OV NNM) Execution of Arbitrary Code Vulnerabilities’

Summary

Potential code execution vulnerabilities have been identified in HP OpenView Network Node Manager.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01646081


Details

Vulnerable Systems:
 * HP OpenView Network Node Manager v7.01 running on HP-UX
 * HP OpenView Network Node Manager v7.01 running on Linux
 * HP OpenView Network Node Manager v7.01 running on Solaris
 * HP OpenView Network Node Manager v7.01 running on Windows
 * HP OpenView Network Node Manager v7.51 running on HP-UX
 * HP OpenView Network Node Manager v7.51 running on Linux
 * HP OpenView Network Node Manager v7.51 running on Solaris
 * HP OpenView Network Node Manager v7.51 running on Windows
 * HP OpenView Network Node Manager v7.53 running on HP-UX
 * HP OpenView Network Node Manager v7.53 running on Linux
 * HP OpenView Network Node Manager v7.53 running on Solaris
 * HP OpenView Network Node Manager v7.53 running on Windows

Potential security vulnerabilities have been identified with HP OpenView Network Node Manager (OV NNM). These vulnerabilities could be exploited remotely to allow execution of arbitrary code.

Patch Availability:
HP has made patches available to resolve the vulnerabilities for NNM v7.53.
The patches are available from:
http://support.openview.hp.com/selfsolve/patches

CVE Information:
CVE-2008-0067

Disclosure Timeline:
2009-01-20: Release Date
2010-05-04: Last Update’

Categories: News