The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of HP OpenView: several buffer overflows of OVTrace

Synthesis of the vulnerability 

Several buffer overflow permit a network attacker to execute code on Hewlett-Packard OpenView via OVTrace.
Impacted products: HPE NMC, OpenView, OpenView NNM, OpenView Operations.
Severity of this bulletin: 3/4.
Number of vulnerabilities in this bulletin: 2.
Creation date: 10/08/2007.
Revision date: 16/08/2007.
Références of this threat: BID-25255, c01106515, c01109171, c01109584, c01109617, c01110576, c01110627, c01111851, c01112038, c01114023, c01114156, c01115068, CVE-2007-1676, CVE-2007-3872, HPSBMA02235, HPSBMA02236, HPSBMA02237, HPSBMA02238, HPSBMA02239, HPSBMA02240, HPSBMA02241, HPSBMA02242, HPSBMA02244, HPSBMA02245, HPSBMA02246, SSRT061260, TPTI-07-14, VIGILANCE-VUL-7077.

Description of the vulnerability 

The OVTrace service is started by default to log actions of other components of HP OpenView. It listens on 5051/tcp (OVTrace.exe) or 5053/tcp (ovtrcsvc.exe) ports.

However, this service does not correctly check size of data it receives.

An unauthenticated attacker can therefore generate several overflows in order to execute code on computer.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This cybersecurity bulletin impacts software or systems such as HPE NMC, OpenView, OpenView NNM, OpenView Operations.

Our Vigil@nce team determined that the severity of this cybersecurity weakness is important.

The trust level is of type confirmed by the editor, with an origin of intranet client.

This bulletin is about 2 vulnerabilities.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a technician ability can exploit this computer vulnerability bulletin.

Solutions for this threat 

HP OpenView Business Process Insight: patch OVBPI_00014.
Patch OVBPI_00014 is available:
  http://support.openview.hp.com/patches/ovbpi/02.10/win.jsp

HP OpenView Dashboard: hotfix.
A hotfix is available:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Internet Service: version 3.10.040.
Revision 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Network Node Manager: patch.
HP's announce indicates patches.

HP OpenView Operations Manager for Windows: hotfix.
A hotfix is available:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Operations: version 3.10.040 and patches.
Version 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1
Patches are indicated in HP's announce.

HP OpenView Performance Agent: version 3.10.040.
Version 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Performance Insight: version 3.10.040.
Version 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Performance Manager: version 3.10.040.
Version 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Reporter: hotfix LCore SSRT061260.
A hotfix is available:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1

HP OpenView Service Quality Manager: version 3.10.040.
Version 3.10.040 is corrected:
  http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides networks vulnerabilities patches. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.