HP OpenView Network Node Manager is prone to an overflow condition. The ovuispmd, ovwdb and ovtopmd services fail to properly sanitize user-supplied input due to a flaw in the libovw.so.2 library, resulting in a heap overflow. With a specially crafted request, a remote attacker can potentially cause the execution of arbitrary code.

HP reported this as a remote denial of service attack, downplaying the real severity of the issue. Additional details of this vulnerability were researched by Tenable Network Security and demonstrate that the vulnerability is considerably more severe than originally disclosed.

Currently, there are no known workarounds or upgrades to correct this issue. However, Hewlett-Packard has released a patch to address this vulnerability.

• Security Tracker: 1013651
• Bugtraq ID: 13029
• Secunia Advisory ID: 14865
• Related OSVDB ID: 15321
• ISS X-Force ID: 19993
• CVE ID: 2005-1056 (see also: NVD)
• Vendor Specific Advisory URL: http://itrc.hp.com/service/cki/docDisplay.do?docId=HPSBMA01125
• Vendor URL: http://www.openview.hp.com/products/nnm/
• Other Advisory URL: http://www.securityfocus.com/advisories/8372
• Generic Informational URL: https://discussions.nessus.org/message/4040#4040
• Keyword: OVNNM

Unknown or Incomplete