CVE-2008-3544

critical

HPE

CVSS v3 Base Score

9.0

AV:N/AC:L/Au:N/C:P/I:P/A:C

EPSS Score

36.7%

Exploitation probability in 30 days

Top 3% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: October 13, 2008 (6422 days ago)

Last Modified: April 23, 2026

Vendor: HPE

Source: NVD

Description

Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.

CWE

CWE-119

Affected Products

hp openview network node manager

References

🔗 aluigi.altervista.org 🔗 downloads.securityfocus.com 🔗 h20000.www2.hp.com 🔗 secunia.com 🔗 securityreason.com

CVE-2008-3544

Vulnerability Report

Description

CWE

Affected Products

References