Intrusion Prevention

HP.OpenView.Network.Node.Manager.Rping.Stack.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in HP Network Node Manager.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP request. It allows a remote attacker to execute arbitrary code.

Affected Products

HP OpenView Network Node Manager (OV NNM) version 7.51
HP OpenView Network Node Manager (OV NNM) version 7.53

Impact

System compromise

Recommended Actions

Apply the patch supplied by the vendor:
http://support.openview.hp.com/selfsolve/patches

CVE References

CVE-2009-1420