CVE-2016-4087 — HIGH (8.1) — White Hats Nepal

Vulnerability Description

Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of service or execute arbitrary code via crafted DNS packets.

CVSS Score

8.1

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Huawei	S12700	-
Huawei	S12700 Firmware	v200r005c00spc300
Huawei	S5700	-
Huawei	S5700 Firmware	v200r001c00

Related Weaknesses (CWE)

CWE-20

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160427-01-dns-enVendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160427-01-dns-enVendor Advisory

FAQ

What is CVE-2016-4087?

CVE-2016-4087 is a vulnerability with a CVSS score of 8.1 (HIGH). Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of ser...

How severe is CVE-2016-4087?

CVE-2016-4087 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-4087?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei S12700, Huawei S12700 Firmware, Huawei S5700, Huawei S5700 Firmware.