{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"HP Openview Network Node Manager (NNM) 7.51.","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"HP Openview Network Node Manager (NNM) 7.01 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"HP Openview Network Node Manager (NNM) 6.41 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nHP Openview a publi\u00e9 le 15 avril 2008 un correctif de s\u00e9curit\u00e9\npermettant de r\u00e9soudre plusieurs anciennes vuln\u00e9rabilit\u00e9s pr\u00e9sentes au\nniveau de la version embarqu\u00e9e d'Apache.\n\nCes vuln\u00e9rabilit\u00e9s permettent \u00e0 un utilisateur malintentionn\u00e9 de\nr\u00e9aliser de l'injection de code indirecte (XSS), un d\u00e9ni de service \u00e0\ndistance depuis le r\u00e9seau local, ou l'ex\u00e9cution de code arbitraire \u00e0\ndistance depuis le r\u00e9seau local.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2006-3747","url":"https://www.cve.org/CVERecord?id=CVE-2006-3747"},{"name":"CVE-2005-3357","url":"https://www.cve.org/CVERecord?id=CVE-2005-3357"},{"name":"CVE-2005-3352","url":"https://www.cve.org/CVERecord?id=CVE-2005-3352"}],"links":[],"reference":"CERTA-2008-AVI-214","revisions":[{"description":"version initiale.","revision_date":"2008-04-17T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s permettant l'ex\u00e9cution de code arbitraire\ndepuis un r\u00e9seau local ont \u00e9t\u00e9 corrig\u00e9es dans HP Openview.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans HP Openview","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 HP HPSBMA02328 du 15 avril 2008","url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01428449"}]}