Vulnerability CVE-2013-4630


Published: 2013-06-20

Description:
Stack-based buffer overflow on Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 debugging is enabled, allows remote attackers to execute arbitrary code via malformed SNMPv3 requests.

See advisories in our WLB2 database:
Topic
Author
Date
High
Huawei SNMPv3 Multiple buffer overflows
Roberto Paleari
06.05.2013

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:H/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.6/10
10/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Huawei -> Ar 1200 
Huawei -> Ar 150 
Huawei -> Ar 200 
Huawei -> Ar 2200 
Huawei -> Ar 3200 

 References:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-260626.htm

Copyright 2022, cxsecurity.com

 

Back to Top