HP Network Node Manager i Remote Code Execution (HPSBMU03075)

Critical Nessus Plugin ID 79801


The remote host is potentially affected by a remote code execution vulnerability.


The version of HP Network Node Manager i (NNMi) installed on the remote host is a version that is potentially affected by a remote code execution vulnerability.

Note that Nessus did not check for the presence of a patch or workaround for this issue.


Upgrade to version 10.0 or apply the hotfix referenced in the vendor advisory.

See Also



Plugin Details

Severity: Critical

ID: 79801

File Name: hp_nnmi_HPSBMU03075-rhel.nasl

Version: $Revision: 1.5 $

Type: local

Agent: unix

Published: 2014/12/08

Modified: 2016/12/21

Dependencies: 79802

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:hp:network_node_manager_i

Required KB Items: Settings/ParanoidReport, installed_sw/HP Network Node Manager i, Host/RedHat/release, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/09/09

Vulnerability Publication Date: 2014/09/09

Exploitable With

Core Impact

Metasploit (HP Network Node Manager I PMD Buffer Overflow)

Reference Information

CVE: CVE-2014-2624

OSVDB: 111292

HP: HPSBMU03075, SSRT101519, emr_na-c04378450

IAVA: 2014-A-0136