HP Network Node Manager i Remote Code Execution (HPSBMU03075)

Critical Nessus Plugin ID 77730


The remote host is potentially affected by a remote code execution vulnerability.


The version of HP Network Node Manager i (NNMi) installed on the remote host is a version that is potentially affected by a remote code execution vulnerability.

Note that Nessus did not check for the presence of a patch or workaround for this issue.


Upgrade to version 10.0 or apply the hotfix referenced in the vendor advisory.

See Also



Plugin Details

Severity: Critical

ID: 77730

File Name: hp_nnmi_HPSBMU03075.nasl

Version: $Revision: 1.7 $

Type: local

Agent: windows

Family: Windows

Published: 2014/09/17

Modified: 2016/12/21

Dependencies: 70145

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:hp:network_node_manager_i

Required KB Items: Settings/ParanoidReport, installed_sw/HP Network Node Manager i, SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/09/09

Vulnerability Publication Date: 2014/09/09

Exploitable With

Core Impact

Metasploit (HP Network Node Manager I PMD Buffer Overflow)

Reference Information

CVE: CVE-2014-2624

OSVDB: 111292

HP: HPSBMU03075, SSRT101519, emr_na-c04378450

IAVA: 2014-A-0136