mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-07-09 16:05:11 +00:00
99 lines
3.3 KiB
JSON
99 lines
3.3 KiB
JSON
{
|
|
"id": "CVE-2008-0067",
|
|
"sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
|
|
"published": "2009-01-08T19:30:00.407",
|
|
"lastModified": "2018-10-15T21:57:30.200",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote attackers to execute arbitrary code via (1) long string parameters to the OpenView5.exe CGI program; (2) a long string parameter to the OpenView5.exe CGI program, related to ov.dll; or a long string parameter to the (3) getcvdata.exe, (4) ovlaunch.exe, or (5) Toolbar.exe CGI program."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "M\u00faltiples desbordamientos de b\u00fafer basados en pila en HP OpenView Network Node Manager (OV NNM) v7.51 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de (1) par\u00e1metros de cadenas largas del programa CGI OpenView5.exe; (2) un par\u00e1metro de cadena larga del programa CGI OpenView5.exe, relacionado con ov.dll; o un par\u00e1metro de cadena larga de los programas CGI (3) getcvdata.exe, (4) ovlaunch.exe, o (5) Toolbar.exe."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "COMPLETE",
|
|
"integrityImpact": "COMPLETE",
|
|
"availabilityImpact": "COMPLETE",
|
|
"baseScore": 10.0
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 10.0,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": true,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-119"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F5CC1E39-5607-41A9-8BBE-A51F1AC9D5CB"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://marc.info/?l=bugtraq&m=123247393715913&w=2",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
},
|
|
{
|
|
"url": "http://securityreason.com/securityalert/4885",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
},
|
|
{
|
|
"url": "http://securityreason.com/securityalert/8307",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
},
|
|
{
|
|
"url": "http://securitytracker.com/id?1021521",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/499826/100/0/threaded",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/33147",
|
|
"source": "PSIRT-CNA@flexerasoftware.com"
|
|
}
|
|
]
|
|
} |