PT-2001-1754 · Hewlett Packard+1 · Hp Openview Network Node Manager+1

Publicado

2001-08-29

Atualizado

2016-10-18

CVE-2001-0552

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: HP OpenView Network Node Manager (NNM) version 6.1 Tivoli Netview versions 5.x through 6.x

Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message. This is related to the ovactiond component.

Recommendations: For HP OpenView Network Node Manager (NNM) version 6.1, update the software to remove the vulnerability. For Tivoli Netview versions 5.x through 6.x, update the software to remove the vulnerability. As a temporary workaround, consider restricting access to the ovactiond component to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2001-0552

Produtos afetados

Hp Openview Network Node Manager

Tivoli Netview

PT-2001-1754 · Hewlett Packard+1 · Hp Openview Network Node Manager+1

CVE-2001-0552

Identificadores relacionados

Produtos afetados

Referências · 6