Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-vrp-en | Vendor Advisory |
http://www.securityfocus.com/bid/94504 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Information
Published : 2017-04-02 13:59
Updated : 2017-04-05 16:59
NVD link : CVE-2016-8795
Mitre link : CVE-2016-8795
JSON object : View
CWE
CWE-190
Integer Overflow or Wraparound
Products Affected
huawei
- secospace_usg6600_firmware
- secospace_usg6600
- cloudengine_8800
- cloudengine_12800_firmware
- cloudengine_7800
- cloudengine_5800_firmware
- cloudengine_8800_firmware
- cloudengine_6800_firmware
- cloudengine_6800
- cloudengine_12800
- cloudengine_7800_firmware
- cloudengine_5800