Secunia Research has discovered multiple vulnerabilities in HP OpenView Network Node Manager, which can be exploited by malicious people to compromise a vulnerable system.

1) Various boundary errors in the OpenView5.exe CGI application when processing parameters can be exploited to cause stack-based buffer overflows via HTTP requests to the CGI application with overly long parameter strings.

2) A boundary error in ov.dll can be exploited to cause a stack-based buffer overflow by e.g. sending a HTTP request to the OpenView5.exe CGI application with an overly long parameter string.

3) A boundary error in the getcvdata.exe CGI application can be exploited to cause a stack-based buffer overflow by sending a HTTP request to the CGI application with an overly long parameter string.

4) A boundary error in the ovlaunch.exe CGI application can be exploited to cause a stack-based buffer overflow by sending a HTTP request to the CGI application with an overly long parameter string.

5) Boundary errors in the Toolbar.exe CGI application can be exploited to cause a stack-based buffer overflows by sending HTTP requests to the CGI application with overly long parameter strings.

Successful exploitation of the vulnerabilities allows execution of arbitrary code.

The vulnerabilities are confirmed in version 7.51 with NNM_01168. Other versions may also be affected.

Solution
Apply patches.
Further details available in Customer Area

Provided and/or discovered by
JJ Reyes, Secunia Research.

Changelog
Further details available in Customer Area

Original Advisory
Secunia Research:
http://secunia.com/secunia_research/2008-13/

HP (HPSBMA02400 SSRT080144):
https://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01646081

Deep Links
Links available in Customer Area