CVE-2010-2703

Name of the Vulnerable Software and Affected Versions HP OpenView Network Node Manager versions 7.51 through 7.53

Description The issue is related to a stack-based buffer overflow in the execvp nc function within the ov.dll module of HP OpenView Network Node Manager, specifically when running on Windows. This allows remote attackers to execute arbitrary code by sending a long HTTP request to the webappmon.exe application.

Recommendations For HP OpenView Network Node Manager versions 7.51 through 7.53, consider restricting access to the webappmon.exe application until a patch is available. As a temporary workaround, limiting the length of HTTP requests to webappmon.exe may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.