Vulnerability CVE-2014-5328


Published: 2014-10-11   Modified: 2014-10-13

Description:
Buffer overflow in the Webserver component on the Huawei E5332 router before 21.344.27.00.1080 allows remote authenticated users to cause a denial of service (reboot) via a long parameter in an API service request message.

Type:

CWE-399

(Resource Management Errors)

CVSS2 => (AV:N/AC:L/Au:S/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.9/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Huawei -> E5332 
Huawei -> E5332 firmware 

 References:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-373056.htm
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000119
http://jvn.jp/en/jp/JVN63587560/index.html

Copyright 2024, cxsecurity.com

 

Back to Top