Vulnerability Description
Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches allows remote attackers to execute arbitrary code via a long URI.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Ar 18-1X | <= r0130 |
| Huawei | Ar 18-2X | <= r1712 |
| Huawei | Ar 18-3X | <= r0118 |
| Huawei | Ar 19\/29\/49 | <= r2207 |
| Huawei | Ar 28\/46 | <= r0311 |
| Huawei | S2000 | r6305 |
| Huawei | S2300 | r6305 |
| Huawei | S2700 | r6305 |
| Huawei | S3000 | r6305 |
| Huawei | S3300 | r6305 |
| Huawei | S3300Hi | r6305 |
| Huawei | S3500 | r6305 |
| Huawei | S3700 | r6305 |
| Huawei | S3900 | r6305 |
| Huawei | S5100 | r6305 |
| Huawei | S5600 | r6305 |
| Huawei | S7800 | r6305 |
| Huawei | S8500 | r1631 |
Related Weaknesses (CWE)
References
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hVendor Advisory
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hVendor Advisory
FAQ
What is CVE-2012-6569?
CVE-2012-6569 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S560...
How severe is CVE-2012-6569?
CVE-2012-6569 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-6569?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Ar 18-1X, Huawei Ar 18-2X, Huawei Ar 18-3X, Huawei Ar 19\/29\/49, Huawei Ar 28\/46.