Intrusion Prevention

HP.OpenView.Network.Node.Manager.Directory.Traversal

Description

This indicates an attack attempt to exploit a directory traversal vulnerability in HP OpenView Network Node Manager.
The vulnerability is a result of the application's failure to properly sanitize user input. As a result, a remote attacker can send a crafted query, to access potentially sensitive data on the affected computer.

Affected Products

HP OpenView Network Node Manager 7.53
HP OpenView Network Node Manager 7.51
HP OpenView Network Node Manager 7.01

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply patch, available from the website.
http://support.openview.hp.com/selfsolve/patches

CVE References

CVE-2008-0068