Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » HP OpenView ECSD Buffer Overflow Vulnerability

HP OpenView ECSD Buffer Overflow Vulnerability

by platon on June 1st, 2001 HP OpenView Network Node Manager (NNM) is a system management software package distributed by HP. It is designed for use on enterprise systems, and offers remote administrative facilities...



A problem in the software could allow a local user elevated privileges. Due to the unsafe handling of command line input by the Event Correlation Services daemon (ecsd), a buffer overflow makes it possible to overwrite stack variables, including the return address.


This problem makes it possible for a local user to execute arbitrary code, and gain elevated privileges on the local system.

This vulnerability was originally announced to Bugtraq by Jonas Eriksson on May 23, 2001.

[Homepage]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »