CVE-2010-1554

critical

Description

Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter.

References

http://zerodayinitiative.com/advisories/ZDI-10-085/

http://www.securityfocus.com/archive/1/511249/100/0/threaded

http://www.exploit-db.com/exploits/14181

http://securityreason.com/securityalert/8154

http://marc.info/?l=bugtraq&m=127360750704351&w=2

Details

Source: Mitre, NVD

Published: 2010-05-13

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H