CVE-2009-4181

CWE-119 — Buffer Overflow4 documents4 sources

Severity

10.0CRITICAL

EPSS

18.7%

top 4.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Openview Network Node Manager

Timeline

PublishedDec 10

Latest updateMay 2

Description

Stack-based buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via vectors involving the sel and arg parameters to jovgraph.exe.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/openview_network_node_manager7.0.1, 7.51, 7.53+2

Patches

Patch: h20000.www2.hp.com ↗Patch: www.securityfocus.com ↗Patch: h20000.www2.hp.com ↗

🔴Vulnerability Details

GHSA

GHSA-f3rc-7vhc-7745: Stack-based buffer overflow in ovwebsnmpsrv↗2022-05-02

▶

CVEList

CVE-2009-4181: Stack-based buffer overflow in ovwebsnmpsrv↗2009-12-10

▶

💥Exploits & PoCs

Exploit-DB

phpMyBackupPro - Arbitrary File Download↗2009-11-16

▶