Register | Forget Password | Login
Search :
SecurityReason

News

Search

SecurityAlert

About SecurityAlert

ExploitAlert

SecurityReason Research

WLB

WLB Database

Send to WLB

About WLB

RSS

News

SecurityAlert

World Laboratory of Bugtraq

ExploitAlert

Apache

PHP

Corporate

Contact

About us

Services

SecurePHP

Note

If you have found a vulnerability, please send to our SecurityAlert Database :
secalert()securityreason()com

Also if you have new ( 0-day ) exploit, please send to our ExploitAlert Archive :
exploit()securityreason()com

Details : SecurityAlert

  Topic : HP OpenView Network Node Manager OpenView5.exeDirectory Traversal
  SecurityAlert : 3814
  CVE : CVE-2008-0068
  SecurityRisk : Low  alert  (About)
  Remote Exploit : No
  Local Exploit : Yes
  Exploit Given : No
  Credit : Secunia Research
  Published : 17.04.2008

  Affected Software : HP, Openview_network_node_manager, 7.51
HP, Openview_network_node_manager, 7.53



  Advisory Text :  

======================================================================

Secunia Research 14/04/2008

- HP OpenView Network Node Manager OpenView5.exe Directory Traversal -

======================================================================
Table of Contents

Affected Software....................................................1
Severity.............................................................2
Vendor's Description of Software.....................................3
Description of Vulnerability.........................................4
Solution.............................................................5
Time Table...........................................................6
Credits..............................................................7
References...........................................................8
About Secunia........................................................9
Verification........................................................10

======================================================================
1) Affected Software

* HP OpenView Network Node Manager 7.51

NOTE: Other versions may also be affected.

======================================================================
2) Severity

Rating: Less critical
Impact: Exposure of sensitive information
Exposure of system information
Where: Local network

======================================================================
3) Vendor's Description of Software

"This software provides a vast amount of automation, including event
correlation and automated monitoring of your network to improve the
efficiency and productivity of your IT staff."

Product Link:
http://www.openview.hp.com/products/nnm/

======================================================================
4) Description of Vulnerability

Secunia Research has discovered a vulnerability in HP OpenView Network
Node Manager, which can be exploited by malicious people to disclose
certain information.

It is possible to download or view arbitrary files by sending a HTTP
request to the OpenView5.exe CGI application and passing strings
containing directory traversal sequences to the "Action" parameter.

======================================================================
5) Solution

Filter malicious characters or character sequences using e.g. a
web proxy.

======================================================================
6) Time Table

07/01/2008 - Vendor notified.
07/01/2008 - Vendor response.
14/04/2008 - Public disclosure due to disclosure by a third party.

======================================================================
7) Credits

Discovered by JJ Reyes, Secunia Research.

======================================================================
8) References

The Common Vulnerabilities and Exposures (CVE) project has assigned
CVE-2008-0068 for the vulnerability

======================================================================
9) About Secunia

Secunia offers vulnerability management solutions to corporate
customers with verified and reliable vulnerability intelligence
relevant to their specific system configuration:

http://corporate.secunia.com/

Secunia also provides a publicly accessible and comprehensive advisory
database as a service to the security community and private
individuals, who are interested in or concerned about IT-security.

http://secunia.com/

Secunia believes that it is important to support the community and to
do active vulnerability research in order to aid improving the
security and reliability of software in general:

http://corporate.secunia.com/secunia_research/33/

Secunia regularly hires new skilled team members. Check the URL below
to see currently vacant positions:

http://secunia.com/secunia_vacancies/

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/secunia_security_advisories/

======================================================================
10) Verification

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2008-4/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

======================================================================





  Feedback :

If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com.
Alert

*BSD libc (strfmon) Multiple vulnerabilities

high- 2008-03-25

Maksymilian Arciemowicz discovered a Integer Overflow vulnerability in the libc library "strfmon()" function.A vulnerability could allow an attacker who successfully exploits this vulnerability to take control of the affected *BSD systems.

Apache rss

» Apache Tomcat <=
   6.0.18 UTF8 Directory
   Traversal Vulnerability

» Apache Tomcat information
   disclosure vulnerability

» Apache Tomcat XSS
   vulnerability

» Apache-SSL memory
   disclosure

PHP rss

» PHP 5.2.6 chdir(),ftok()
   (standard ext) safe_mode
   bypass

» PHP 5.2.6 posix_access()
   (posix ext) safe_mode
   bypass

» PHP 5.2.5 and prior :
   *printf() functions
   Integer Overflow

» PHP 5.2.5 cURL safe_mode
   bypass

Copyright © SecurityReason. All Rights Reserved.