NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2008-3544

Summary	Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.
Publication Date	Oct. 14, 2008, 5 a.m.
Registration Date	Jan. 29, 2021, 1:40 p.m.
Last Update	Aug. 19, 2013, 2:47 p.m.

CVSS2.0 : HIGH
Score	9.0
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:hp:openview_network_node_manager:7.01:::::::*
cpe:2.3:a:hp:openview_network_node_manager:7.50:::::::*
cpe:2.3:a:hp:openview_network_node_manager:7.51:::::::*
cpe:2.3:a:hp:openview_network_node_manager:7.53:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://aluigi.altervista.org/adv/closedview_old-adv.txt	MISC	Exploit
2	http://downloads.securityfocus.com/vulnerabilities/exploits/28668.c	MISC
3	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01537275	HP
4	http://secunia.com/advisories/31688	SECUNIA	Vendor Advisory
5	http://securityreason.com/securityalert/4397	SREASON
6	http://www.securityfocus.com/archive/1/490541	BUGTRAQ	Exploit
7	http://www.securityfocus.com/bid/28668	BID

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html