CVE-2016-4577: Buffer Overflow
First published: Mon May 23 2016(Updated: )
Buffer overflow in the Smart DNS functionality in the Huawei NGFW Module and Secospace USG6300, USG6500, USG6600, and USG9500 firewalls with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei USG9500 | ||
| Huawei Usg9500 Firmware | =v500r001c00 | |
| Huawei NGFW Module | ||
| Huawei Ngfw Module Firmware | =v500r001c00 | |
| Huawei Secospace USG6300 | ||
| Huawei Secospace Usg6300 Firmware | =v500r001c00 | |
| Huawei Secospace USG6600 | ||
| Huawei Secospace Usg6600 Firmware | =v500r001c00 | |
| Huawei Secospace Usg6500 | ||
| Huawei Secospace Usg6500 Firmware | =v500r001c00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/tags
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei usg9500
- canonical/huawei usg9500 firmware
- version/huawei usg9500 firmware/v500r001c00
- canonical/huawei ngfw module
- canonical/huawei ngfw module firmware
- version/huawei ngfw module firmware/v500r001c00
- canonical/huawei secospace usg6300
- canonical/huawei secospace usg6300 firmware
- version/huawei secospace usg6300 firmware/v500r001c00
- canonical/huawei secospace usg6600
- canonical/huawei secospace usg6600 firmware
- version/huawei secospace usg6600 firmware/v500r001c00
- canonical/huawei secospace usg6500
- canonical/huawei secospace usg6500 firmware
- version/huawei secospace usg6500 firmware/v500r001c00