APP: HP OpenView Network Node Manager Event Correlation Service Command Injection

This signature detects a command injection in HP OpenView. Version 7.5 and prior are vulnerable. A successful exploitation could lead to arbitrary remote command execution.

Extended Description

HP OpenView Network Node Manager is prone to multiple remote arbitrary command-execution vulnerabilities. These issue arise when the user-specified 'node' URI parameter of various scripts is used as part of a command to be executed with the 'system()' function. These issues may facilitate unauthorized remote access in the context of the webserver to the affected computer. These issues affect version 6.41 and 7.5 on the Solaris platform. Unknown versions of the package on Microsoft Windows platforms are also affected. Other versions and platforms are also likely affected.

Affected Products

Hp openview_network_node_manager

Short Name
APP:HPOV:NNM-EVTCOR-CMD-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2005-2773 Command Correlation Event HP Injection Manager Network Node OpenView Service bid:14662
Release Date
09/01/2005
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3727
False Positive
Unknown
Vendors

Hp

CVSS Score

7.5

Found a potential security threat?