vulnerability announce CVE-2009-1420 CVE-2009-2298

OpenView NNM: vulnerability of SNMP and MIB

Synthesis of the vulnerability

An attacker can use a vulnerability of SNMP and MIB in order to execute code or to generate a denial of service on HP OpenView Network Node Manager.

Severity: 2/4. Creation date: 10/06/2009.

Impacted products

• HP OpenView
• HP OpenView Network Node Manager

Description of the vulnerability

The SNMP protocol is used for the remote administration of a computer. The MIB stores information and state of the computer. An attacker can use a vulnerability of SNMP and MIB in order to execute code or to generate a denial of service on HP OpenView Network Node Manager. Technical details are unknown.

Share this bulletin

Complete Vigil@nce bulletin

OpenView NNM: vulnerability of SNMP and MIB

Characteristics

Title: OpenView NNM: vulnerability of SNMP and MIB. Keywords: MIB Manager Network Node OpenView SNMP vulnerability. Identifiers: BID-35267, c01754877, CERTA-2009-AVI-228, CVE-2009-1420, CVE-2009-2298, HPSBMA02430, SSRT080094, VIGILANCE-VUL-8787.

Information sources

Publications and announces Source example: HPSBMA02430 SSRT080094 rev.1 - HP OpenView Network Node Manager (OV NNM) Running SNMP and MIB, Remote Execution of Arbitrary Code, Denial of Service (DoS)

Solutions for this vulnerability

Patch or workaround

Computer vulnerabilities tracking service

Vigil@nce provides software vulnerability patches. The Vigil@nce vulnerability database contains several thousand vulnerabilities. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.