PT-2016-5775 · Huawei · Huawei Ar3200+1

Published

2016-04-06

Updated

2016-05-18

CVE-2016-3950

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Huawei AR3200 routers with software before V200R006C10SPC300

Description The issue is related to an input validation vulnerability that allows remote authenticated users to cause a denial of service, resulting in the device restarting. This can be achieved by sending crafted or malformed packets to the device. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations For Huawei AR3200 routers with software before V200R006C10SPC300, update the software to V200R006C10SPC300 or later to resolve the issue. As a temporary workaround, consider restricting access to the device and implementing additional security measures to minimize the risk of exploitation.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-3950

Affected Products

Huawei Ar3200

Huawei Vrp

PT-2016-5775 · Huawei · Huawei Ar3200+1

CVE-2016-3950

Weakness Enumeration

Related Identifiers

Affected Products

References · 3