HP OpenView Network Node Manager Multiple Remote Command Execution Vulnerabilities

Bugtraq ID: 14662
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Aug 25 2005 12:00AM
Updated: Dec 22 2006 12:02AM
Credit: James Fisher of Portcullis Computer Security Ltd discovered the 'connectedNodes.ovpl' vulnerability. David Litchfield of NGS Software Ltd. also reported these issues to the vendor.
Vulnerable: HP OpenView Network Node Manager 7.50 Windows 2000/XP
HP OpenView Network Node Manager 7.50 Solaris
HP OpenView Network Node Manager 7.50 HP-UX 11.X
HP OpenView Network Node Manager 7.50
HP OpenView Network Node Manager 7.0 .1 Windows 2000/XP
HP OpenView Network Node Manager 7.0 .1 Solaris
HP OpenView Network Node Manager 7.0 .1 Linux
HP OpenView Network Node Manager 7.0 .1 HP-UX 11.X
HP OpenView Network Node Manager 7.0 .1
HP OpenView Network Node Manager 6.41 Solaris
HP OpenView Network Node Manager 6.31 NT 4.X/Windows 2000
HP OpenView Network Node Manager 6.31
HP OpenView Network Node Manager 6.10
HP OpenView Network Node Manager 6.4 Solaris
HP OpenView Network Node Manager 6.4 NT 4.X/Windows 2000
HP OpenView Network Node Manager 6.4
HP OpenView Network Node Manager 6.2 Solaris
HP OpenView Network Node Manager 6.2 NT 4.X/Windows 2000
HP OpenView Network Node Manager 6.2 NT 4.X/Windows 2000
HP OpenView Network Node Manager 6.2
HP OpenView Network Node Manager 6.41
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus