Sign-up

ID

VAR-201704-1028


CVE

CVE-2016-8795


TITLE

plural Huawei Vulnerability triggered by integer overflow in device

Trust: 0.8

sources: JVNDB: JVNDB-2016-008227

DESCRIPTION

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset. HuaweiCloudEngine12800, CloudEngine5800, CloudEngine6800, CloudEngine7800, and CloudEngine8800 are Huawei switch devices. An integer overflow vulnerability exists in some Huawei switches. Multiple Huawei CloudEngine Products are prone to an integer-overflow vulnerability. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed. Huawei CloudEngine 5800 and others are data center switches of China's Huawei (Huawei). The vulnerability is caused by the fact that the programs do not check specific fields in IPFPM packets. The following products and versions are affected: versions earlier than Huawei CloudEngine 12800 V200R001C00, versions earlier than CloudEngine 5800 V200R001C00, versions earlier than CloudEngine 6800 V200R001C00, versions earlier than CloudEngine 7800 V200R001C00, versions earlier than CloudEngine 8800 V200R001C

Trust: 2.52

sources: NVD: CVE-2016-8795 // JVNDB: JVNDB-2016-008227 // CNVD: CNVD-2016-11666 // BID: 94504 // VULHUB: VHN-97615

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2016-11666

AFFECTED PRODUCTS

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r002c00

Trust: 2.4

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r003c00

Trust: 2.4

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r003c10

Trust: 2.4

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r005c00

Trust: 2.4

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r005c10

Trust: 2.4

vendor:huaweimodel:cloudengine 5800scope:eqversion:v100r006c00

Trust: 2.4

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r002c00

Trust: 2.4

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r003c00

Trust: 2.4

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r003c10

Trust: 2.4

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r005c00

Trust: 2.4

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r002c00

Trust: 1.8

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r003c00

Trust: 1.8

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r003c10

Trust: 1.8

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r005c00

Trust: 1.8

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r005c10

Trust: 1.8

vendor:huaweimodel:cloudengine 12800scope:eqversion:v100r006c00

Trust: 1.8

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r005c10

Trust: 1.8

vendor:huaweimodel:cloudengine 6800scope:eqversion:v100r006c00

Trust: 1.8

vendor:huaweimodel:cloudengine 7800scope:eqversion:v100r003c00

Trust: 1.8

vendor:huaweimodel:cloudengine 7800scope:eqversion:v100r003c10

Trust: 1.8

vendor:huaweimodel:cloudengine 7800scope:eqversion:v100r005c00

Trust: 1.8

vendor:huaweimodel:cloudengine 7800scope:eqversion:v100r005c10

Trust: 1.8

vendor:huaweimodel:cloudengine 7800scope:eqversion:v100r006c00

Trust: 1.8

vendor:huaweimodel:cloudengine 8800scope:eqversion:v100r006c00

Trust: 1.8

vendor:huaweimodel:secospace usg6600scope:eqversion:v500r001c00

Trust: 1.8

vendor:huaweimodel:cloudengine v100r003c00scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c10scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c00scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c10scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r006c00scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c10scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c00scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c10scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r006c00scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c10scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c00scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c10scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r006c00scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c10scope:eqversion:7800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c00scope:eqversion:7800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r005c10scope:eqversion:7800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r006c00scope:eqversion:7800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r006c00scope:eqversion:8800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r002c00scope:eqversion:12800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r002c00scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c00scope:eqversion:5800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r002c00scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c00scope:eqversion:6800

Trust: 0.9

vendor:huaweimodel:cloudengine v100r003c00scope:eqversion:7800

Trust: 0.9

vendor:huaweimodel:secospace usg6600 v500r001c00scope: - version: -

Trust: 0.3

vendor:huaweimodel:secospace usg6600 v500r001c30spc200scope:neversion: -

Trust: 0.3

vendor:huaweimodel:cloudengine v200r001c00scope:neversion:8800

Trust: 0.3

vendor:huaweimodel:cloudengine v200r001c00scope:neversion:7800

Trust: 0.3

vendor:huaweimodel:cloudengine v200r001c00scope:neversion:6800

Trust: 0.3

vendor:huaweimodel:cloudengine v200r001c00scope:neversion:5800

Trust: 0.3

vendor:huaweimodel:cloudengine v200r001c00scope:neversion:12800

Trust: 0.3

sources: CNVD: CNVD-2016-11666 // BID: 94504 // JVNDB: JVNDB-2016-008227 // CNNVD: CNNVD-201611-662 // NVD: CVE-2016-8795

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2016-8795
value: MEDIUM

Trust: 1.0

NVD: CVE-2016-8795
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2016-11666
value: LOW

Trust: 0.6

CNNVD: CNNVD-201611-662
value: HIGH

Trust: 0.6

VULHUB: VHN-97615
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2016-8795
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2016-11666
severity: LOW
baseScore: 2.6
vectorString: AV:N/AC:H/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 4.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-97615
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:M/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2016-8795
baseSeverity: MEDIUM
baseScore: 5.9
vectorString: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 2.2
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2016-11666 // VULHUB: VHN-97615 // JVNDB: JVNDB-2016-008227 // CNNVD: CNNVD-201611-662 // NVD: CVE-2016-8795

PROBLEMTYPE DATA

problemtype:CWE-190

Trust: 1.9

sources: VULHUB: VHN-97615 // JVNDB: JVNDB-2016-008227 // NVD: CVE-2016-8795

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201611-662

TYPE

digital error

Trust: 0.6

sources: CNNVD: CNNVD-201611-662

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2016-008227

PATCH
title:huawei-sa-20161123-01-vrpurl:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-vrp-en
Trust: 0.8
title:Patches for integer overflow vulnerabilities in some Huawei switchesurl:https://www.cnvd.org.cn/patchInfo/show/84462
Trust: 0.6
title:Multiple Huawei CloudEngine Product Integer Overflow Vulnerability Fixurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=65936
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2016-11666 // 
            
            
            
            JVNDB: JVNDB-2016-008227 // 
            
            
            
            CNNVD: CNNVD-201611-662

EXTERNAL IDS
db:NVDid:CVE-2016-8795
Trust: 3.4
db:BIDid:94504
Trust: 2.6
db:JVNDBid:JVNDB-2016-008227
Trust: 0.8
db:CNNVDid:CNNVD-201611-662
Trust: 0.7
db:CNVDid:CNVD-2016-11666
Trust: 0.6
db:VULHUBid:VHN-97615
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2016-11666 // 
            
            
            
            VULHUB: VHN-97615 // 
            
            
            
            BID: 94504 // 
            
            
            
            JVNDB: JVNDB-2016-008227 // 
            
            
            
            CNNVD: CNNVD-201611-662 // 
            
            
            
            NVD: CVE-2016-8795

REFERENCES
url:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-vrp-en
Trust: 2.0
url:http://www.securityfocus.com/bid/94504
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8795
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2016-8795
Trust: 0.8
url:http://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20161123-01-vrp-cn
Trust: 0.6
url:http://www.huawei.com
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2016-11666 // 
            
            
            
            VULHUB: VHN-97615 // 
            
            
            
            BID: 94504 // 
            
            
            
            JVNDB: JVNDB-2016-008227 // 
            
            
            
            CNNVD: CNNVD-201611-662 // 
            
            
            
            NVD: CVE-2016-8795

CREDITS
Huawei
Trust: 0.9
sources:
            
            
            BID: 94504 // 
            
            
            
            CNNVD: CNNVD-201611-662

SOURCES
db:CNVDid:CNVD-2016-11666
db:VULHUBid:VHN-97615
db:BIDid:94504
db:JVNDBid:JVNDB-2016-008227
db:CNNVDid:CNNVD-201611-662
db:NVDid:CVE-2016-8795

LAST UPDATE DATE
2024-11-23T22:34:39.620000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2016-11666date:2016-11-30T00:00:00
db:VULHUBid:VHN-97615date:2017-04-05T00:00:00
db:BIDid:94504date:2016-12-20T01:08:00
db:JVNDBid:JVNDB-2016-008227date:2017-05-02T00:00:00
db:CNNVDid:CNNVD-201611-662date:2016-12-02T00:00:00
db:NVDid:CVE-2016-8795date:2024-11-21T03:00:05.543

SOURCES RELEASE DATE
db:CNVDid:CNVD-2016-11666date:2016-11-30T00:00:00
db:VULHUBid:VHN-97615date:2017-04-02T00:00:00
db:BIDid:94504date:2016-11-23T00:00:00
db:JVNDBid:JVNDB-2016-008227date:2017-05-02T00:00:00
db:CNNVDid:CNNVD-201611-662date:2016-11-23T00:00:00
db:NVDid:CVE-2016-8795date:2017-04-02T20:59:01.797