APP: HP OpenView Network Node Manager ovalarmsrv Integer Overflow
This signature detects attempts to exploit a known vulnerability in the HP OpenView Network Node Manager ovalarmsrv. A successful attack can lead to an integer overflow and arbitrary remote code execution within the context of the server.
Extended Description
HP OpenView Network Node Manager (NNM) is prone to a remote code-execution vulnerability caused by an integer-overflow error. Successfully exploiting this issue allows an attacker to execute arbitrary code with the privileges of the user running the affected application. This issue affects NNM 7.01, 7.51, and 7.53.
Affected Products
Hp openview_network_node_manager
Short Name
APP:HPOV:NNM-OVALARM-IO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2008-2438 HP Integer Manager Network Node OpenView Overflow bid:34738 ovalarmsrv
Release Date
09/22/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
tcp/2954
False Positive
Unknown
Vendors
Hp
CVSS Score
10.0