CVE-2012-6570

Name of the Vulnerable Software and Affected Versions Huawei BIMS and web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches (affected versions not specified)

Description The issue concerns the HTTP module in the affected systems, which fails to validate the length of HTTP data against the Content-Length field. This oversight allows remote HTTP servers to launch heap-based buffer overflow attacks, potentially leading to the execution of arbitrary code through crafted responses.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.