CVE-2008-3544 Information

Description

Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51 and possibly 7.01 7.50 and 7.53 allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47) (2) REQUEST_SAVE_STATE (aka number 61) or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.

Reference

http://aluigi.altervista.org/adv/closedview_old-adv.txt http://downloads.securityfocus.com/vulnerabilities/exploits/28668.c http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01537275 http://secunia.com/advisories/31688 http://securityreason.com/securityalert/4397 http://www.securityfocus.com/archive/1/490541 http://www.securityfocus.com/bid/28668