PT-2009-6065 · Hewlett Packard · Hp Openview Network Node Manager

Damian Frizza

Published

2009-11-19

Updated

2009-11-24

CVE-2009-3840

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions HP OpenView Network Node Manager versions 7.51 through 7.53

Description The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, by sending a packet with an invalid Error Code field to the embedded database engine service.

Recommendations For versions 7.51 and 7.53, consider restricting access to the embedded database engine service to minimize the risk of exploitation until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-3840

Affected Products

Hp Openview Network Node Manager

PT-2009-6065 · Hewlett Packard · Hp Openview Network Node Manager

CVE-2009-3840

Related Identifiers

Affected Products

References · 8