What is the severity of CVE-2009-3977?

CVE-2009-3977 has a high severity as it can lead to denial of service due to memory corruption.

How do I fix CVE-2009-3977?

To mitigate CVE-2009-3977, update HP OpenView Network Node Manager to a version that addresses this vulnerability.

What versions of HP OpenView Network Node Manager are affected by CVE-2009-3977?

HP OpenView Network Node Manager version 7.53 is affected by CVE-2009-3977.

Can CVE-2009-3977 be exploited remotely?

Yes, CVE-2009-3977 can be exploited remotely by attackers through crafted input.

What types of attacks are possible with CVE-2009-3977?

CVE-2009-3977 may allow attackers to cause denial of service or potentially lead to unspecified impacts.

Vulnerability/
CVE-2009-3977

medium

CWE

119

19/11/2009

7/8/2024

CVE-2009-3977: Buffer Overflow

First published: Thu Nov 19 2009(Updated: )

Multiple buffer overflows in a certain ActiveX control in ActiveDom.ocx in HP OpenView Network Node Manager (OV NNM) 7.53 might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via a long string argument to the (1) DisplayName, (2) AddGroup, (3) InstallComponent, or (4) Subscribe method. NOTE: this issue is not a vulnerability in many environments, because the control is not marked as safe for scripting and would not execute with default Internet Explorer settings.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
HP OpenView Network Node Manager	=7.53

Remedy

http://www.coresecurity.com/content/openview_nnm_internaldb_dos

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3977?
CVE-2009-3977 has a high severity as it can lead to denial of service due to memory corruption.
How do I fix CVE-2009-3977?
To mitigate CVE-2009-3977, update HP OpenView Network Node Manager to a version that addresses this vulnerability.
What versions of HP OpenView Network Node Manager are affected by CVE-2009-3977?
HP OpenView Network Node Manager version 7.53 is affected by CVE-2009-3977.
Can CVE-2009-3977 be exploited remotely?
Yes, CVE-2009-3977 can be exploited remotely by attackers through crafted input.
What types of attacks are possible with CVE-2009-3977?
CVE-2009-3977 may allow attackers to cause denial of service or potentially lead to unspecified impacts.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/remedy
agent/references
agent/weakness
agent/last-modified-date
agent/author
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/hp
canonical/hp openview network node manager
version/hp openview network node manager/7.53

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.