Vulnerability Name:

CVE-2009-3849 (CCN-54652)

Assigned:2009-12-09
Published:2009-12-09
Updated:2018-10-10
Summary:Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) a long Template parameter to nnmRptConfig.exe, related to the strcat function; or (2) a long Oid parameter to snmp.exe.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Authentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): 
Access Complexity (AC): 
Athentication (Au): 
Impact Metrics:Confidentiality (C): 
Integrity (I): 
Availibility (A): 
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Wed Dec 09 2009 - 11:39:12 CST
ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

Source: MITRE
Type: CNA
CVE-2009-3849

Source: CCN
Type: HP Security Bulletin HPSBMA02483 SSRT090257 rev.1
HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

Source: HP
Type: Patch, Vendor Advisory
SSRT090130

Source: HP
Type: UNKNOWN
SSRT090257

Source: CCN
Type: SA37665
HP OpenView Network Node Manager Multiple Vulnerabilities

Source: BUGTRAQ
Type: UNKNOWN
20091209 ZDI-09-097: Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20091209 ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability

Source: BID
Type: UNKNOWN
37261

Source: CCN
Type: BID-37261
RETIRED: HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities

Source: BID
Type: UNKNOWN
37298

Source: CCN
Type: BID-37298
HP OpenView Network Node Manager 'nnmRptConfig.exe' 'strcat()' Remote Code Execution Vulnerability

Source: BID
Type: UNKNOWN
37299

Source: CCN
Type: BID-37299
HP OpenView Network Node Manager 'Oid' Parameter Remote Buffer Overflow Vulnerability

Source: MISC
Type: UNKNOWN
http://zerodayinitiative.com/advisories/ZDI-09-095/

Source: MISC
Type: UNKNOWN
http://zerodayinitiative.com/advisories/ZDI-09-097/

Source: XF
Type: UNKNOWN
hp-ovnnm-nnmrptconfig-bo(54652)

Source: XF
Type: UNKNOWN
hp-ovnnm-nnmrptconfig-bo(54652)

Source: XF
Type: UNKNOWN
hp-openviewnnm-snmp-bo(54654)

Source: CCN
Type: ZDI-09-095
Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability

Source: CCN
Type: ZDI-09-097
Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:hp:openview_network_node_manager:7.0.1:*:hp_ux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.0.1:*:linux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.0.1:*:solaris:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.0.1:*:windows:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
  • OR cpe:/a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2009-3849 (CCN-54654)

    Assigned:2009-12-09
    Published:2009-12-09
    Updated:2018-10-10
    Summary:Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) a long Template parameter to nnmRptConfig.exe, related to the strcat function; or (2) a long Oid parameter to snmp.exe.
    CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Changed
    Impact Metrics:Confidentiality (C): High
    Integrity (I): High
    Availibility (A): High
    CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
    7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Authentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
    7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
    Exploitability Metrics:Access Vector (AV): 
    Access Complexity (AC): 
    Athentication (Au): 
    Impact Metrics:Confidentiality (C): 
    Integrity (I): 
    Availibility (A): 
    Vulnerability Type:CWE-119
    Vulnerability Consequences:Gain Access
    References:Source: CCN
    Type: BugTraq Mailing List, Wed Dec 09 2009 - 11:39:17 CST
    ZDI-09-095: Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability

    Source: MITRE
    Type: CNA
    CVE-2009-3849

    Source: CCN
    Type: HP Security Bulletin HPSBMA02483 SSRT090257 rev.1
    HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

    Source: CCN
    Type: SA37665
    HP OpenView Network Node Manager Multiple Vulnerabilities

    Source: CCN
    Type: BID-37261
    RETIRED: HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities

    Source: CCN
    Type: BID-37298
    HP OpenView Network Node Manager 'nnmRptConfig.exe' 'strcat()' Remote Code Execution Vulnerability

    Source: CCN
    Type: BID-37299
    HP OpenView Network Node Manager 'Oid' Parameter Remote Buffer Overflow Vulnerability

    Source: XF
    Type: UNKNOWN
    hp-openviewnnm-snmp-bo(54654)

    Source: CCN
    Type: ZDI-09-095
    Hewlett-Packard OpenView NNM Snmp.exe Oid Variable Buffer Overflow Vulnerability

    Source: CCN
    Type: ZDI-09-097
    Hewlett-Packard OpenView NNM nnmRptConfig.exe Template Variable strcat Overflow Vulnerability

    BACK
    hp openview network node manager 7.0.1
    hp openview network node manager 7.0.1
    hp openview network node manager 7.0.1
    hp openview network node manager 7.0.1
    hp openview network node manager 7.51 -
    hp openview network node manager 7.51 -
    hp openview network node manager 7.51 -
    hp openview network node manager 7.51 -
    hp openview network node manager 7.53 -
    hp openview network node manager 7.53 -
    hp openview network node manager 7.53 -
    hp openview network node manager 7.53 -
    hp openview network node manager 7.01
    hp openview network node manager 7.51
    hp openview network node manager 7.53