Network Management Systems (NMSs) are widely deployed in medium and large organizations to map and control network and host infrastructure, and provide an excellent attack surface. NMSs are information rich for an attacker, saving reconnaissance time and providing a pivot point to hide their network activity in the background noise. The talk explores many NMS attack vectors, including persistent cross-site scripting (XSS), format string vulnerabilities, command injection, SQL injection and forced browsing to take control of the NMS and authenticated user's host. Using live demonstrations we explore attack delivery, execution and factors that control the success of each attack. In conclusion, we discuss overall risk factors and mitigation techniques for providing protection against these attacks.