CVE-2016-4576

Name of the Vulnerable Software and Affected Versions Huawei IPS Module versions prior to V500R001C20SPC100 Huawei NGFW Module versions prior to V500R001C20SPC100 Huawei NIP6300 versions prior to V500R001C20SPC100 Huawei NIP6600 versions prior to V500R001C20SPC100 Huawei Secospace USG6300 versions prior to V500R001C20SPC100 Huawei USG6500 versions prior to V500R001C20SPC100 Huawei USG6600 versions prior to V500R001C20SPC100 Huawei USG9500 versions prior to V500R001C20SPC100 Huawei AntiDDoS8000 versions prior to V500R001C20SPC100

Description The issue is related to a buffer overflow in the Application Specific Packet Filtering (ASPF) functionality. This allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet with illegitimate parameters.

Recommendations For Huawei IPS Module versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NGFW Module versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NIP6300 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NIP6600 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei Secospace USG6300 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei USG6500 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei USG6600 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei USG9500 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei AntiDDoS8000 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later.