Vulnerability CVE-2011-0262 - CERT Civis.Net

Vulnerability Name:

CVE-2011-0262 (CCN-64654)

Assigned:

2010-12-23

Published:

2011-01-10

Updated:

2017-08-17

Summary:

Buffer overflow in the stringToSeconds function in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via large values of variables to jovgraph.exe.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2011-0262

Source: CCN
Type: HP Security Bulletin HPSBMA02621 SSRT100352 rev.2
HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

Source: CCN
Type: SECTRACK ID: 1024951
HP OpenView Network Node Manager Multiple Bugs Let Remote Users Execute Arbitrary Code

Source: CCN
Type: OSVDB ID: 70470
HP OpenView Network Node Manager (OV NNM) ovwebsnmpsrv.exe ovutil.dll stringToSeconds Function Remote Overflow

Source: HP
Type: UNKNOWN
SSRT100352

Source: BID
Type: UNKNOWN
45762

Source: CCN
Type: BID-45762
HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1024951

Source: VUPEN
Type: UNKNOWN
ADV-2011-0085

Source: MISC
Type: UNKNOWN
http://www.zerodayinitiative.com/advisories/ZDI-11-004/

Source: XF
Type: UNKNOWN
hp-opennnm-ovutildll-bo(64654)

Source: XF
Type: UNKNOWN
hp-opennnm-ovutildll-bo(64654)

Source: CCN
Type: ZDI-11-004
HP OpenView Network Node Manager ovutil.dll stringToSeconds Remote Code Execution Vulnerability

Vulnerable Configuration:

Configuration 1:

cpe:/a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*

OR cpe:/a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*

Denotes that component is vulnerable