Integer signedness error in ovspmd.exe in HP OpenView Network Node Manager (OV NNM) 8.01, and 7.53 and earlier, allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a long request to TCP port 8886 that begins with a certain negative integer, which passes a signed comparison and triggers a heap-based buffer overflow.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openview_network_node_manager | Hp | * | 7.53 (including) |
| Openview_network_node_manager | Hp | 4.11 (including) | 4.11 (including) |
| Openview_network_node_manager | Hp | 5.0.1 (including) | 5.0.1 (including) |
| Openview_network_node_manager | Hp | 5.01 (including) | 5.01 (including) |
| Openview_network_node_manager | Hp | 6.0.1 (including) | 6.0.1 (including) |
| Openview_network_node_manager | Hp | 6.1 (including) | 6.1 (including) |
| Openview_network_node_manager | Hp | 6.2 (including) | 6.2 (including) |
| Openview_network_node_manager | Hp | 6.4 (including) | 6.4 (including) |
| Openview_network_node_manager | Hp | 6.10 (including) | 6.10 (including) |
| Openview_network_node_manager | Hp | 6.20 (including) | 6.20 (including) |
| Openview_network_node_manager | Hp | 6.31 (including) | 6.31 (including) |
| Openview_network_node_manager | Hp | 6.41 (including) | 6.41 (including) |
| Openview_network_node_manager | Hp | 7.0.1 (including) | 7.0.1 (including) |
| Openview_network_node_manager | Hp | 7.01 (including) | 7.01 (including) |
| Openview_network_node_manager | Hp | 7.50 (including) | 7.50 (including) |
| Openview_network_node_manager | Hp | 7.51 (including) | 7.51 (including) |
| Openview_network_node_manager | Hp | 8.01 (including) | 8.01 (including) |