CVE-2016-4576: Buffer Overflow
First published: Mon May 23 2016(Updated: )
Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 devices with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei NIP6300 firmware | ||
| Huawei NIP6300 firmware | =v500r001c00 | |
| Huawei Secospace USG6500 firmware | ||
| Huawei Secospace USG6500 | =v500r001c00 | |
| Huawei Secospace AntiDDoS8000 | ||
| Huawei Secospace AntiDDoS8000 | =v500r001c00 | |
| Huawei Eudemon USG9500 | ||
| Huawei Unified Security Gateway Firmware | =v500r001c00 | |
| Huawei Secospace USG6300 firmware | ||
| Huawei Secospace USG6300 Firmware | =v500r001c00 | |
| Huawei NGFW Module | ||
| Huawei NGFW Module firmware | =v500r001c00 | |
| Huawei Secospace USG6600 firmware | ||
| Huawei Secospace USG6600 firmware | =v500r001c00 | |
| Huawei NIP6600 firmware | ||
| Huawei NIP6600 | =v500r001c00 | |
| Huawei IPS Module firmware | ||
| Huawei IPS firmware | =v500r001c00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-4576?
CVE-2016-4576 is classified as a high severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2016-4576?
To fix CVE-2016-4576, upgrade the affected Huawei devices to firmware version V500R001C20SPC100 or later.
Which devices are affected by CVE-2016-4576?
CVE-2016-4576 affects Huawei devices including NIP6300, NIP6600, USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 running specific firmware versions.
Can CVE-2016-4576 be exploited remotely?
Yes, CVE-2016-4576 can be exploited remotely by attackers to trigger a buffer overflow.
What are the consequences of CVE-2016-4576 exploitation?
Exploitation of CVE-2016-4576 can lead to a denial of service, disrupting the functionality of the affected devices.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/huawei
- canonical/huawei nip6300 firmware
- version/huawei nip6300 firmware/v500r001c00
- canonical/huawei secospace usg6500 firmware
- canonical/huawei secospace usg6500
- version/huawei secospace usg6500/v500r001c00
- canonical/huawei secospace antiddos8000
- version/huawei secospace antiddos8000/v500r001c00
- canonical/huawei eudemon usg9500
- canonical/huawei unified security gateway firmware
- version/huawei unified security gateway firmware/v500r001c00
- canonical/huawei secospace usg6300 firmware
- version/huawei secospace usg6300 firmware/v500r001c00
- canonical/huawei ngfw module
- canonical/huawei ngfw module firmware
- version/huawei ngfw module firmware/v500r001c00
- canonical/huawei secospace usg6600 firmware
- version/huawei secospace usg6600 firmware/v500r001c00
- canonical/huawei nip6600 firmware
- canonical/huawei nip6600
- version/huawei nip6600/v500r001c00
- canonical/huawei ips module firmware
- canonical/huawei ips firmware
- version/huawei ips firmware/v500r001c00