‘HP OpenView Network Node Manager Execution of Arbitrary Code and DoS Vulnerabilities’

Summary

Multiple vulnerabilities were discovered in HP OpenView Network Node Manager.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01926980


Details

Vulnerable Systems:
HP OpenView Network Node Manager (OV NNM) v7.51
HP OpenView Network Node Manager (OV NNM) v7.53

Potential vulnerabilities have been identified with HP OpenView Network Node Manager. The vulnerabilities could be exploited remotely to execute arbitrary code with administrator priviliges or to create a Denial of Service.

Patch Availability:
The patches are available from http://support.openview.hp.com/selfsolve/patches
Note: The patches are not available from the HP IT Resource Center (ITRC).

CVE Information:
CVE-2009-3840
CVE-2010-2710

Disclosure Timeline:
Release Date: 2009-11-17
Last Updated: 2010-08-18′

Categories: News