CVE-2011-0271

Name of the Vulnerable Software and Affected Versions HP OpenView Network Node Manager versions 7.51 through 7.53

Description The issue is related to a command injection vulnerability. It arises from the CGI scripts in the software not properly validating an unspecified parameter, allowing remote attackers to execute arbitrary commands by using a command string for this parameter's value.

Recommendations For HP OpenView Network Node Manager versions 7.51 and 7.53, consider restricting access to the CGI scripts until a patch is available. As a temporary workaround, avoid using the vulnerable parameter in the CGI scripts to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.