CVE-2014-4190CVE-2014-4190

Affected configuration(s):

cpe:/a:huawei:campus_series_switch_software:v200r001
cpe:/a:huawei:campus_series_switch_software:v200r002
cpe:/a:huawei:campus_series_switch_software:v200r003
cpe:/a:huawei:campus_series_switch_software:v200r005
cpe:/h:huawei:campus_lsw_s9700:-
cpe:/h:huawei:campus_s2350:-
cpe:/h:huawei:campus_s2750:-
cpe:/h:huawei:campus_s3300hi:-
cpe:/h:huawei:campus_s3700hi:-
cpe:/h:huawei:campus_s5300:-
cpe:/h:huawei:campus_s5700:-
cpe:/h:huawei:campus_s6300:-
cpe:/h:huawei:campus_s6700:-
cpe:/h:huawei:campus_s7700:-
cpe:/h:huawei:campus_s9300:-
cpe:/h:huawei:campus_s9300e:-

Date published: 2014-06-17T10:55:08.940-04:00

Date last modified: 2014-06-18T13:06:34.267-04:00

CVSS Score: 7.8

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-343218.htm

Summary: Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.