HP OpenView NNM snmpviewer.exe CGI Multiple Variable Remote Code Execution Vulnerability
Publish Date: 21 de июля de 2015
Severity: : Critical
CVE Kennungen: : CVE-2010-1552
Advisory Date: 21 de июля de 2015
DESCRIPTION
Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act and app parameters.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004165
Trend Micro Deep Security DPI Rule Name: 1004165 - HP OpenView NNM snmpviewer.exe CGI Multiple Variable Remote Code Execution
AFFECTED SOFTWARE AND VERSION:
- hp openview_network_node_manager 7.0.1
- hp openview_network_node_manager 7.51
- hp openview_network_node_manager 7.53