Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > HP OpenView Network Node Manager Multiple Vulnerabilities
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
HP OpenView Network Node Manager Multiple Vulnerabilities
Secunia Advisory: SA28074
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2009-01-07
Last Update: 2009-04-30
Popularity: 6,286 views

Critical:
Moderately critical
Impact: System access
Where: From local network
Solution Status: Vendor Patch

Software:HP OpenView Network Node Manager (NNM) 7.x
Binary Analysis: BA341 :: Available for 1 Credit
BA324 :: Available for 1 Credit
BA342 :: Available for 1 Credit
BA343 :: Available for 1 Credit
BA353 :: Available for 1 Credit
BA354 :: Available for 1 Credit

Secunia CVSS-2 Score: Available in Secunia business solutions

Subscribe: Instant alerts on relevant vulnerabilities


Advisory Content (Page 2 of 3)[ 1 ] [ 2 ] [ 3 ]

Solution:
Apply the patches.

-- OV NNM v7.53 --

HP-UX (IA):
Apply PHSS_38489 or subsequent.

HP-UX (PA):
Apply PHSS_38488 or subsequent.

Linux RedHatAS2.1:
Apply LXOV_00087 or subsequent.

Linux RedHat4AS-x86_64:
Apply LXOV_00088 or subsequent.

Solaris:
Apply PSOV_03515 or subsequent.

Windows:
Apply NNM_01193 or subsequent.

-- OV NNM v7.51 --
Upgrade to NNM v7.53 and install the patches listed above.
Patch bundles for upgrading from NNM v7.51 to NNM v5.53 are available here:
ftp://nnm_753:update@hprc.external.hp.com/

-- OV NNM v7.01 --

HP-UX (PA):
Apply PHSS_38761 or subsequent and archive file SSRT080125.701_IP12.hotfix.tar.

Solaris:
Apply PSOV_03516 or subsequent and archive file SSRT080125.701_IP12.hotfix.tar.

Windows:
Apply NNM_01194 or subsequent and archive file SSRT080125.701_IP12.hotfix.tar.

Provided and/or discovered by:
JJ Reyes, Secunia Research.

Changelog:
2009-01-21: Updated "Solution" section with additional information. Added link to "Original Advisory" section.
2009-01-22: Updated "Solution" section. Updated "Solution Status" to "Vendor Patch".
2009-04-30: Added additional information for OV NNM v7.01 to "Solution" section. The vendor has issued a hotfix for OV NNM v7.01 with Intermediate Patch 12.

Original Advisory:
Secunia Research:
http://secunia.com/secunia_research/2008-13/

HP (HPSBMA02400 SSRT080144):
https://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01646081

Change Page:
[ 1 ] [ 2 ] [ 3 ]


Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

4th Dec, 2009
New advisories: 18
New vulnerabilities: 197
Updated advisories: 22

Less // 291 views
Ubuntu update for qemu-kvm
Less // 301 views
Simple Machines Forum Cross-Site Request Forgery
Less // 307 views
Joomla YJ Whois Module Cross-Site Scripting Vulnerability
Less // 316 views
Red Hat update for kernel
Highly // 322 views
Jasc Paint Shop Pro PNG Buffer Overflow Vulnerability
Less // 455 views
Linux Kernel Multiple Vulnerabilities
Highly // 312 views
Uiga Church Portal Multiple Vulnerabilities
Less // 307 views
Micronet SP1910 Network Access Controller "msg" Cross-Site Scripting
Not // 306 views
Debian update for gforge
Moderately // 348 views
DevIL DICOM "GetUID()" Buffer Overflow Vulnerability

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Adobe Flash Player Multiple Vulnerabilities // 53 views
2. ReviewPost PHP Pro Multiple Vulnerabilities // 52 views
3. PHP ManualMaker Multiple Cross-Site Scripting Vulnerabilities // 51 views
4. Sun Java JDK / JRE Multiple Vulnerabilities // 43 views
5. Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability // 34 views
6. Adobe Reader/Acrobat Multiple Vulnerabilities // 29 views
7. Kaspersky Anti-Virus 2010 klavemu.kdl Denial of Service Vulnerability // 25 views
8. Internet Explorer Layout Handling Memory Corruption Vulnerability // 16 views
9. Google Chrome Cross-Origin Resource Sharing Security Bypass // 15 views
10. avast! Home/Professional aswRdr.sys Memory Corruption Vulnerability // 11 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009