CVE-2008-4559

HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:hp_ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.0.1:*:windows:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:hp-ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.51:-:windows:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:hp-ux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:linux:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:solaris:*:*:*:*:*
cpe:2.3:a:hp:openview_network_node_manager:7.53:-:windows:*:*:*:*:*

History

21 Nov 2024, 00:51

Type Values Removed Values Added
References () http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610 - () http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610 -
References () http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=770 - Patch () http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=770 - Patch

Information

Published : 2009-02-08 21:30

Updated : 2024-11-21 00:51


NVD link : CVE-2008-4559

Mitre link : CVE-2008-4559

CVE.ORG link : CVE-2008-4559


JSON object : View

Products Affected

hp

  • openview_network_node_manager
CWE
CWE-20

Improper Input Validation