1. Home
  2. CVE Database
  3. CVE-2016-4576
CRITICAL · 9.8

CVE-2016-4576

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS800...

Vulnerability Description

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 devices with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiNip6300-
HuaweiNip6300 Firmwarev500r001c00
HuaweiSecospace Usg6500-
HuaweiSecospace Usg6500 Firmwarev500r001c00
HuaweiSecospace Antiddos8000-
HuaweiSecospace Antiddos8000 Firmwarev500r001c00
HuaweiUsg9500-
HuaweiUsg9500 Firmwarev500r001c00
HuaweiSecospace Usg6300-
HuaweiSecospace Usg6300 Firmwarev500r001c00
HuaweiNgfw Module-
HuaweiNgfw Module Firmwarev500r001c00
HuaweiSecospace Usg6600-
HuaweiSecospace Usg6600 Firmwarev500r001c00
HuaweiNip6600-
HuaweiNip6600 Firmwarev500r001c00
HuaweiIps Module-
HuaweiIps Module Firmwarev500r001c00

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2016-4576?

CVE-2016-4576 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS800...

How severe is CVE-2016-4576?

CVE-2016-4576 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2016-4576?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Nip6300, Huawei Nip6300 Firmware, Huawei Secospace Usg6500, Huawei Secospace Usg6500 Firmware, Huawei Secospace Antiddos8000.