Vulnerability CVE-2016-8790
Published: 2017-04-02

Description:
Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with software before V200R001C00SPC700, CloudEngine 8800 with software before V200R001C00SPC700, CloudEngine 12800 with software before V200R001C00SPC700 could allow the attacker to exploit a buffer overflow vulnerability by sending crafted packets to the affected system to cause a main control board reboot.

CVSS2 => (AV:A/AC:L/Au:S/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.5/10
6.9/10
5.1/10
Exploit range
Attack complexity
Authentication
Adjacent network
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Huawei -> Cloudengine 12800 firmware 
Huawei -> Cloudengine 5800 firmware 
Huawei -> Cloudengine 6800 firmware 
Huawei -> Cloudengine 7800 firmware 
Huawei -> Cloudengine 8800 firmware 

 References:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-cfm-en
http://www.securityfocus.com/bid/94402
Copyright 2024, cxsecurity.com

 

Back to Top