Computer Security

CVE-2007-0819
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2007-0819
StatusCandidate
DescriptionHP Network Node Manager (NNM) Remote Console 7.50 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileges via a Trojan horse executable file or ActiveX component, or a modified bin\ovtrcsvc.exe for the HP Open View Shared Trace Service.
SeverityHigh
CVSS score7
CVSS vector(AV:L/AC:L/Au:NR/C:C/I:C/A:C/B:N)
PhaseAssigned (07.02.2007)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0819
ReferencesBID : 22475
 FRSIRT : ADV-2007-0533
 FULLDISC : 20070208 SecurityVulns.com: HP Network Node Manager remote console weak files permissions
 MISC : http://securityvulns.com/news/HP/NNM/RC/WP.html
 SECTRACK : 1017609
 SECUNIA : 24066
 XF : openview-nnm-directory-privilege-escalation(32362)
SecurityVulns:HP Network Node Manager remote console weak files permissions
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod
 


Rating@Mail.ru