HP OpenView Network Node Manager Multiple Vulnerabilities

critical Nessus Plugin ID 42879

Synopsis

A database service on the remote Windows host is affected by multiple vulnerabilities.

Description

The version of HP OpenView Network Node Manager (NNM) installed on the remote Windows host is affected by multiple vulnerabilities :

- The embedded DB service is affected by a denial of service vulnerability that is triggered when it receives a packet with an error code of less than -1. An unauthenticated, remote attacker can exploit this to crash the service. (CVE-2009-3840)

- An unspecified flaw exists that allows an unauthenticated, remote attacker to execute arbitrary code. No other details are available. (CVE-2010-2710)

This plugin only checks OpenView NNM running on Windows, though other platforms are affected.

Solution

Apply the patch referenced in the vendor advisory.

See Also

https://seclists.org/fulldisclosure/2009/Nov/199

http://www.nessus.org/u?fdf8618d

Plugin Details

Severity: Critical

ID: 42879

File Name: hp_nnm_soliddb_dos.nasl

Version: 1.14

Type: local

Agent: windows

Family: Windows

Published: 11/24/2009

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:hp:openview_network_node_manager

Required KB Items: SMB/Registry/Enumerated, SMB/name, SMB/login, SMB/password, SMB/transport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 11/17/2009

Vulnerability Publication Date: 11/17/2009

Reference Information

CVE: CVE-2009-3840, CVE-2010-2710

BID: 37046, 42636

HP: HPSBMA02477, SSRT090177, emr_na-c01926980

Secunia: 37376