Unrated severityNVD Advisory· Published Oct 13, 2008· Updated Apr 23, 2026

CVE-2008-3544

Description

Multiple stack-based buffer overflows in ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, and possibly 7.01, 7.50, and 7.53, allow remote attackers to execute arbitrary code via a long (1) REQUEST_SEV_CHANGE (aka number 47), (2) REQUEST_SAVE_STATE (aka number 61), or (3) REQUEST_RESTORE_STATE (aka number 62) request to TCP port 2954.

Affected products

Microfocus/Openview Network Node Manager4 versions
cpe:2.3:a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:hp:openview_network_node_manager:7.01:*:*:*:*:*:*:*
- cpe:2.3:a:hp:openview_network_node_manager:7.50:*:*:*:*:*:*:*
- cpe:2.3:a:hp:openview_network_node_manager:7.51:*:*:*:*:*:*:*
- cpe:2.3:a:hp:openview_network_node_manager:7.53:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

aluigi.altervista.org/adv/closedview_old-adv.txtnvdExploit
www.securityfocus.com/archive/1/490541nvdExploit
secunia.com/advisories/31688nvdVendor Advisory
downloads.securityfocus.com/vulnerabilities/exploits/28668.cnvd
h20000.www2.hp.com/bizsupport/TechSupport/Document.jspnvd
securityreason.com/securityalert/4397nvd
www.securityfocus.com/bid/28668nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.029
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000