APP: HP OpenView Network Node Manager 'ovtopmd' Denial of Service
This signature detects attempts to exploit a known flaw in HP OpenView Network Node Manager, which is prone to multiple vulnerabilities affecting the 'ovalarmsrv.exe' and 'ovtopmd.exe' processes. A sucessful exploit could result in a Denial of Service (DoS).
Extended Description
HP OpenView Network Node Manager is prone to multiple vulnerabilities affecting the 'ovalarmsrv.exe' and 'ovtopmd.exe' processes. These issues include a directory-traversal issue and multiple denial-of-service issues. UPDATE (April 14, 2008): Secunia Research discovered, independently, that the 'OpenView5.exe' process is also prone to the directory-traversal issue; this affects Network Node Manager 7.51. Note that 'ovalarmsrv.exe' may also be named 'OpenView5.exe'. Attackers can exploit these issues to access potentially sensitive data on the affected computer or to deny service to legitimate users. HP OpenView Network Node Manager 7.53 is vulnerable; other versions may also be affected.
Affected Products
Nortel_networks multiservice_switch-mdm
Short Name
APP:HPOV:OVTOPMD-DOS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
'ovtopmd' CVE-2008-0068 Denial HP Manager Network Node OpenView Service bid:28745 of
Release Date
11/12/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/2532
False Positive
Unknown
Vendors
Nortel_networks
Hp
CVSS Score
5.0