Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-0266

CWE-119 — Buffer Overflow4 documents4 sources

Severity

10.0CRITICAL

EPSS

77.5%

top 1.01%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

HP Openview Network Node Manager

Timeline

PublishedJan 13

Latest updateMay 17

Description

Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long nameParams parameter, a different vulnerability than CVE-2011-0267.2.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/openview_network_node_manager7.51, 7.53+1

🔴Vulnerability Details

GHSA

GHSA-7rj2-8vxc-4g4c: Buffer overflow in nnmRptConfig↗2022-05-17

▶

CVEList

CVE-2011-0266: Buffer overflow in nnmRptConfig↗2011-01-13

▶

💥Exploits & PoCs

Exploit-DB

HP OpenView Network Node Manager (OV NNM) - nnmRptConfig nameParams Buffer Overflow (Metasploit)↗2011-03-23

▶