Vulnerability CVE-2010-1551 - CERT Civis.Net

Vulnerability Name:

CVE-2010-1551 (CCN-58460)

Assigned:

2010-05-11

Published:

2010-05-11

Updated:

2018-10-10

Summary:

Stack-based buffer overflow in the _OVParseLLA function in ov.dll in netmon.exe in Network Monitor in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the sel parameter.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2010-1551

Source: CCN
Type: HP Security Bulletin HPSBMA02527 SSRT010098
HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

Source: HP
Type: UNKNOWN
SSRT010098

Source: CCN
Type: SA39757
HP OpenView Network Node Manager Multiple Vulnerabilities

Source: CCN
Type: OSVDB ID: 64974
HP OpenView Network Node Manager (OV NNM) netmon sel CGI Variable Remote Code Execution

Source: BUGTRAQ
Type: UNKNOWN
20100511 ZDI-10-082: HP OpenView NNM netmon sel CGI Variable Remote Code Execution Vulnerability

Source: BID
Type: UNKNOWN
40067

Source: CCN
Type: BID-40067
HP OpenView Network Node Manager (CVE-2010-1551) '_OVParseLLA()' Remote Code Execution Vulnerability

Source: MISC
Type: UNKNOWN
http://zerodayinitiative.com/advisories/ZDI-10-082/

Source: XF
Type: UNKNOWN
openview-nnm-ovparsella-bo(58460)

Source: CCN
Type: ZDI-10-082
HP OpenView NNM netmon sel CGI Variable Remote Code Execution Vulnerability

Vulnerable Configuration:

Configuration 1:

cpe:/a:hp:openview_network_node_manager:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*

Configuration CCN 1:

cpe:/a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*

Denotes that component is vulnerable