Vulnerability CVE-2012-4960


Published: 2013-06-20

Description:
The Huawei NE5000E, MA5200G, NE40E, NE80E, ATN, NE40, NE80, NE20E-X6, NE20, ME60, CX600, CX200, CX300, ACU, WLAN AC 6605, S9300, S7700, S2300, S3300, S5300, S3300HI, S5300HI, S5306, S6300, S2700, S3700, S5700, S6700, AR G3, H3C AR(OEM IN), AR 19, AR 29, AR 49, Eudemon100E, Eudemon200, Eudemon300, Eudemon500, Eudemon1000, Eudemon1000E-U/USG5300, Eudemon1000E-X/USG5500, Eudemon8080E/USG9300, Eudemon8160E/USG9300, Eudemon8000E-X/USG9500, E200E-C/USG2200, E200E-X3/USG2200, E200E-X5/USG2200, E200E-X7/USG2200, E200E-C/USG5100, E200E-X3/USG5100, E200E-X5/USG5100, E200E-X7/USG5100, E200E-B/USG2100, E200E-X1/USG2100, E200E-X2/USG2100, SVN5300, SVN2000, SVN5000, SVN3000, NIP100, NIP200, NIP1000, NIP2100, NIP2200, and NIP5100 use the DES algorithm for stored passwords, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack.

Type:

CWE-310

(Cryptographic Issues)

CVSS2 => (AV:N/AC:L/Au:S/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.5/10
6.4/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Huawei -> S2300 
Huawei -> E200 usg2200 
Huawei -> Eudemon500 
Huawei -> Svn3000 
Huawei -> ACU 
Huawei -> S2700 
Huawei -> E200 usg5100 
Huawei -> Eudemon8000e-x 
Huawei -> Svn5000 
Huawei -> ATN 
Huawei -> S3300 
Huawei -> E200e-b 
Huawei -> Eudemon 8080e 
Huawei -> Svn5300 
Huawei -> Cx200 
Huawei -> S3300hi 
Huawei -> E200e-c 
Huawei -> Eudemon 8160e 
Huawei -> Cx300 
Huawei -> S3700 
Huawei -> E200e-usg2100 
Huawei -> Eudemon usg5300 
Huawei -> Cx600 
Huawei -> S5300 
Huawei -> E200e-x1 
Huawei -> Eudemon usg5500 
Huawei -> Ma5200g 
Huawei -> S5300hi 
Huawei -> E200e-x2 
Huawei -> Eudemon usg9300 
Huawei -> ME60 
Huawei -> S5306 
Huawei -> E200x3 
Huawei -> Eudemon usg9500 
Huawei -> NE20 
Huawei -> S5700 
Huawei -> E200x5 
Huawei -> H3c ar(oem in) 
Huawei -> Ne20e-x6 
Huawei -> S6300 
Huawei -> E200x7 
Huawei -> Nip100 
Huawei -> NE40 
Huawei -> S6700 
Huawei -> Eudemon1000 
Huawei -> Nip1000 
Huawei -> Ne40e 
Huawei -> S7700 
Huawei -> Eudemon1000e-u 
Huawei -> Nip200 
Huawei -> Ne40e/80e 
Huawei -> S9300 
Huawei -> Eudemon1000e-x 
Huawei -> Nip2100 
Huawei -> Ne5000e 
Huawei -> Wlan ac 6605 
Huawei -> Eudemon100e 
Huawei -> Nip2200 
Huawei -> NE80 
Huawei -> Ar 19/29/49 
Huawei -> Eudemon200 
Huawei -> Nip5100 
Huawei -> Ne80e 
Huawei -> Ar g3 
Huawei -> Eudemon300 
Huawei -> Svn2000 

 References:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-u_194373.htm

Copyright 2024, cxsecurity.com

 

Back to Top