CVE-2001-0552

Description

ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message.

Affected products

• HP / openview_network_node_manager5.01 – 5.01
• HP / openview_network_node_manager6.1 – 6.1
• ibm / tivoli_netview5.0 – 5.0
• ibm / tivoli_netview6.0 – 6.0

References

• MISChttp://www.securityfocus.com/bid/2845
• MAILING_LISThttp://marc.info/?l=bugtraq&m=99201278704545&w=2
• VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-2001-24.html
• MISChttp://www.kb.cert.org/vuls/id/952171