This module exploits a buffer overflow vulnerability in the ovalarm.exe application, part of the HP OpenView Network Node Manager application. The exploit triggers a stack-based buffer overflow by sending a specially crafted HTTP request to the ports 3443/TCP or 80/TCP of the vulnerable system and installs an agent if successful. On Windows, the agent installed by this exploit will run as "IUSR" user.

CVE Link

Exploit Platform

Windows

Exploit Type

Exploits

Remote

Product Name

Impact

HP OpenView NNM ovalarm CGI Remote Buffer Overflow Exploit

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum