HP OpenView NNM getnnmdata.exe CGI ICount Parameter Buffer Overflow
Severity: : Critical
CVE Kennungen: : CVE-2010-1554
Advisory Date: 21 de июля de 2015
DESCRIPTION
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004169
Trend Micro Deep Security DPI Rule Name: 1004169 - HP OpenView NNM getnnmdata.exe CGI ICount Parameter Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- HP Openview_Network_Node_Manager 7.0.1
- HP Openview_Network_Node_Manager 7.51
- HP Openview_Network_Node_Manager 7.53