PT-2016-7030 · Huawei · Usg2100+4
Published
2016-08-10
·
Updated
2016-11-28
·
CVE-2016-6669
CVSS v3.1
7.5
High
| Vector | AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Huawei USG2100, USG2200, USG5100, and USG5500 versions prior to V300R001C10SPC600
Description
The issue is related to a buffer overflow in the Authentication, Authorization and Accounting (AAA) module. A remote attacker can send crafted Enterprise Application Platform (EAP) packets through a Remote Authentication Dial In User Service (RADIUS) server to execute arbitrary code on the affected devices.
Recommendations
For versions prior to V300R001C10SPC600, update to V300R001C10SPC600 or later to resolve the issue. As a temporary workaround, consider restricting access to the AAA module to minimize the risk of exploitation.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei Vrp
Usg2100
Usg2200
Usg5100
Usg5500