huawei ar_150 Security Vulnerabilities

2 Vulnerabilities
Description

Stack-based buffer overflow on Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 debugging is enabled, allows remote attackers to execute arbitrary code via malformed SNMPv3 requests.

Impacted versions: v200r002, v200r001, v200r003

Base Score: 7.6, Severity: HIGH, ID: CVE-2013-4630, Last Modified: 2013-11-03T03:34:00Z

References

Vendor Advisory

Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 is enabled, allow remote attackers to cause a denial of service (device crash) via malformed SNMPv3 requests that leverage unspecified overflow issues.

Impacted versions: v200r001, v200r002, v200r003

Base Score: 7.8, Severity: HIGH, ID: CVE-2013-4631, Last Modified: 2013-06-21T16:22:00Z

References

Vendor Advisory
Free Home-Networking Courses, tutorials and security checklists

USAGE: Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.