{ "id": "CVE-2014-4190", "sourceIdentifier": "cve@mitre.org", "published": "2014-06-17T14:55:08.940", "lastModified": "2014-06-18T17:06:34.267", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet." }, { "lang": "es", "value": "M\u00faltiples desbordamiento de buffer basado en memoria din\u00e1mica en Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700 y LSW S9700 con software V200R001 anterior a V200R001SPH013; S5700, S6700, S5300 y S6300 con software V200R002 anterior a V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750 y LSW S9700 con software V200R003 anterior a V200R003SPH005; y S7700, S9300, S9300E y LSW S9700 con software V200R005 anterior a V200R005C00SPC300 permiten a atacantes remotos causar una denegaci\u00f3n de servicio (reinicio de dispositivo) a trav\u00e9s de un campo de longitud manipulado en un paquete." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:huawei:campus_series_switch_software:v200r001:*:*:*:*:*:*:*", "matchCriteriaId": "21C5D694-5EE3-4478-9F51-84F58DF763F9" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD0FC52B-C9FD-4C82-AF6B-2925C405A0DA" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s3300hi:-:*:*:*:*:*:*:*", "matchCriteriaId": "E3051E39-E500-4937-BB2C-F0B33EFEFB59" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s3700hi:-:*:*:*:*:*:*:*", "matchCriteriaId": "0B77C6A1-0964-443D-A75D-0E68A59F919B" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB230D94-2048-4AE9-873F-D4FA11B8F502" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F29515E-98DD-496F-B3FC-176CD4B2BD9E" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:*", "matchCriteriaId": "AEB73CEC-BB35-40CD-BE87-DADD54ACB239" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:*", "matchCriteriaId": "89288D18-DA31-4683-B6D0-E3CBC91AA7F3" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:*", "matchCriteriaId": "C949558A-3AAC-4A2A-81C1-B9D7072FF3FF" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CDCCC3D-56A1-4C43-A341-CADCD0D2E2B3" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:huawei:campus_series_switch_software:v200r005:*:*:*:*:*:*:*", "matchCriteriaId": "C74BD5E0-9D78-4348-A5AC-C62C9401823D" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD0FC52B-C9FD-4C82-AF6B-2925C405A0DA" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:*", "matchCriteriaId": "C949558A-3AAC-4A2A-81C1-B9D7072FF3FF" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CDCCC3D-56A1-4C43-A341-CADCD0D2E2B3" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s9300e:-:*:*:*:*:*:*:*", "matchCriteriaId": "B7722403-C443-49C9-B46B-E32B6E214497" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:huawei:campus_series_switch_software:v200r003:*:*:*:*:*:*:*", "matchCriteriaId": "F124F68A-3DB8-43CB-B75A-66B32D15EAD2" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_lsw_s9700:-:*:*:*:*:*:*:*", "matchCriteriaId": "AD0FC52B-C9FD-4C82-AF6B-2925C405A0DA" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s2350:-:*:*:*:*:*:*:*", "matchCriteriaId": "D0706908-4279-4582-A1A3-BA34DBD38E56" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s2750:-:*:*:*:*:*:*:*", "matchCriteriaId": "11CCFD4D-E2F7-4B5C-8BBB-9422D247FBCF" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB230D94-2048-4AE9-873F-D4FA11B8F502" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F29515E-98DD-496F-B3FC-176CD4B2BD9E" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:*", "matchCriteriaId": "AEB73CEC-BB35-40CD-BE87-DADD54ACB239" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:*", "matchCriteriaId": "89288D18-DA31-4683-B6D0-E3CBC91AA7F3" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s7700:-:*:*:*:*:*:*:*", "matchCriteriaId": "C949558A-3AAC-4A2A-81C1-B9D7072FF3FF" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s9300:-:*:*:*:*:*:*:*", "matchCriteriaId": "4CDCCC3D-56A1-4C43-A341-CADCD0D2E2B3" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s9300e:-:*:*:*:*:*:*:*", "matchCriteriaId": "B7722403-C443-49C9-B46B-E32B6E214497" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:huawei:campus_series_switch_software:v200r002:*:*:*:*:*:*:*", "matchCriteriaId": "41DD828F-A21B-4B73-BFB4-3C308DD6D1A1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5300:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB230D94-2048-4AE9-873F-D4FA11B8F502" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s5700:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F29515E-98DD-496F-B3FC-176CD4B2BD9E" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6300:-:*:*:*:*:*:*:*", "matchCriteriaId": "AEB73CEC-BB35-40CD-BE87-DADD54ACB239" }, { "vulnerable": true, "criteria": "cpe:2.3:h:huawei:campus_s6700:-:*:*:*:*:*:*:*", "matchCriteriaId": "89288D18-DA31-4683-B6D0-E3CBC91AA7F3" } ] } ] } ], "references": [ { "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-343218.htm", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/bid/67907", "source": "cve@mitre.org" } ] }