HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote malicious users to obtain sensitive information via (1) a crafted request to the nnmRptConfig.exe CGI program, which reveals the pathname of log directories; or (2) a crafted parameter in a request to the ovlaunch.exe CGI program, which reveals configuration details. NOTE: this issue may be partially covered by CVE-2009-0205.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp openview network node manager 7.0.1 |
||
hp openview network node manager 7.53 |
||
hp openview network node manager 7.51 |