CVE-2011-0267
CVE-2011-0267
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 71.7%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado
Lifecycle
10 Jan 2011Metasploit module available
13 Jan 2011Published on NVD
24 Mar 2011Public PoC
Weaponization speed
69 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/17038unverifiedexploitdbwww.exploit-db.com/exploits/17038unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://securityreason.com/securityalert/8156https://exchange.xforce.ibmcloud.com/vulnerabilities/64649http://www.exploit-db.com/exploits/17038http://www.securityfocus.com/archive/1/515628http://www.securityfocus.com/bid/45762http://www.securitytracker.com/id?1024951http://www.vupen.com/english/advisories/2011/0085http://www.zerodayinitiative.com/advisories/ZDI-11-009/