HP-UX PHSS_38783 : HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Unauthorized Access to Data (HPSBMA02406 SSRT080100 rev.2)

Critical Nessus Plugin ID 39382


The remote HP-UX host is missing a security-related patch.


s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 21 :

Potential security vulnerabilities have been identified with HP OpenView Network Node Manager (OV NNM). The vulnerabilities could be exploited remotely to allow execution of arbitrary code or unauthorized access to data.


Install patch PHSS_38783 or subsequent.

See Also


Plugin Details

Severity: Critical

ID: 39382

File Name: hpux_PHSS_38783.nasl

Version: $Revision: 1.21 $

Type: local

Published: 2009/06/15

Modified: 2016/11/18

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2008/12/18

Exploitable With

CANVAS (D2ExploitPack)

Reference Information

CVE: CVE-2008-4559, CVE-2008-4560, CVE-2008-4561, CVE-2008-4562, CVE-2009-0205

OSVDB: 53235, 53236, 53237, 53238, 53239, 53240, 53241

HP: emr_na-c01661610, SSRT080100

CWE: 20, 119, 200