CVE-2008-4559

HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via shell metacharacters in argument fields to the (1) webappmon.exe or (2) OpenView5.exe CGI program. NOTE: this issue may be partially covered by CVE-2009-0205.

Published: Feb 8, 2009
Updated: Apr 13, 2023
CVE: CVE-2008-4559
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
hp / openview_network_node_manager	7.53	7.53.x
hp / openview_network_node_manager	7.0.1	7.0.1.x
hp / openview_network_node_manager	7.51	7.51.x

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01661610
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=770

Vulnerability Database

289,782

CVE-2008-4559