HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
Severity: : Critical
CVE Kennungen: : CVE-2011-0268,CVE-2011-0269
Advisory Date: 30 de июня de 2011
DESCRIPTION
HP OpenView Network Node Manager is prone to multiple remote code-execution vulnerabilities.
Successful exploits may allow an attacker to execute arbitrary code with the privileges of the user running the application's webserver. Failed exploit attempts will likely result in denial-of-service conditions.
INFORMATION EXPOSURE
Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004570
Trend Micro Deep Security DPI Rule Name: 1004570 - HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
AFFECTED SOFTWARE AND VERSION:
- hp openview_network_node_manager 7.51
- hp openview_network_node_manager 7.53