HP OpenView Network Node Manager Buffer Overflows Let Remote Users Execute Arbitrary Code
|
SecurityTracker Alert ID: 1021883 |
SecurityTracker URL: http://securitytracker.com/id/1021883
|
CVE Reference:
CVE-2009-0920, CVE-2009-0921
(Links to External Site)
|
Date: Mar 23 2009
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 7.01, 7.51, 7.53
|
Description:
Several vulnerabilities were reported in HP OpenView Network Node Manager. A remote user can execute arbitrary code on the target system.
A remote user can send specially crafted data to trigger a buffer overflow and execute arbitrary code on the target system. The code will run with the privileges of the target service.
The 'OvOSLocale' parameter is affected [CVE-2009-0920].
The 'OvAcceptLang' cookie parameter in 'Toolbar.exe' is affected and the 'Accept-Language' HTTP header is affected [CVE-2009-0921].
Oren Isacson of Core Security Technologies reported this vulnerability.
The original advisory is available at:
http://www.coresecurity.com/content/openview-buffer-overflows
|
Impact:
A remote user can execute arbitrary code on the target system.
|
Solution:
The vendor has issued patches, available at:
http://support.openview.hp.com/selfsolve/patches
The vendor's advisory is available at:
https://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01696729
|
Vendor URL: www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01696729 (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS: Linux (Any), UNIX (HP/UX), UNIX (Solaris - SunOS), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
[Original Message Not Available for Viewing]
|
|