Actu
Vigil@nce: HP OpenView Network Node Manager, denial of service
November 2009 by Vigil@nce
An remote attacker can send a specially crafted packet to port
2690/tcp in order to generate a denial of service.
– Severity: 2/4
– Consequences: denial of service of service
– Provenance: intranet client
– Means of attack: 1 attack
– Ability of attacker: technician (2/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Creation date: 18/11/2009
IMPACTED PRODUCTS
– HP OpenView NNM
DESCRIPTION OF THE VULNERABILITY
HP Openview Network Node Manager listen on port 2690/tcp.
For certain operations, the received packets contain among other
data an error code. The service extracts the error code an shows
to the user a corresponding string message. However; if the error
code is invalid, the corresponding string is not found triggering
an unhandled exception.
An remote attacker can thus send a specially crafted packet to
port 2690/tcp in order to generate a denial of service.
CHARACTERISTICS
– Identifiers: BID-37046, c01926980, CVE-2009-3840, HPSBMA02477,
SSRT090177, VIGILANCE-VUL-9205
– Url: http://vigilance.fr/vulnerability/HP-OpenView-Network-Node-Manager-denial-of-service-9205
