cnvd - cnvd-2016-11668

cnvd-2016-11668

Vulnerability from cnvd

Title: 多个Huawei Secospace产品存在缓冲区溢出漏洞

Description:

华为Secospace是一款终端安全管理系统。

多个华为Secospace产品存在缓冲区溢出漏洞。由于未对用户复制的数据进行边界检查，攻击者利用漏洞可重启受影响的设备，导致拒绝服务条件，可能执行任意代码。

Severity: 高

Patch Name: 多个Huawei Secospace产品存在缓冲区溢出漏洞的补丁

Patch Description:

华为Secospace是一款终端安全管理系统。

多个华为Secospace产品存在缓冲区溢出漏洞。由于未对用户复制的数据进行边界检查，攻击者利用漏洞可重启受影响的设备，导致拒绝服务条件，可能执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en

Reference: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en

Impacted products

Name
['Huawei Secospace USG6300 V500R001C20SPC100', 'Huawei Secospace USG6300 V500R001C20SPC101', 'Huawei Secospace USG6300 V500R001C20SPC200', 'Huawei Secospace USG6500 V500R001C20SPC100', 'Huawei Secospace USG6500 V500R001C20SPC101', 'Huawei Secospace USG6500 V500R001C20SPC200', 'Huawei Secospace USG6600 V500R001C20SPC100', 'Huawei Secospace USG6600 V500R001C20SPC101', 'Huawei Secospace USG6600 V500R001C20SPC200']

Name

['Huawei Secospace USG6300 V500R001C20SPC100', 'Huawei Secospace USG6300 V500R001C20SPC101', 'Huawei Secospace USG6300 V500R001C20SPC200', 'Huawei Secospace USG6500 V500R001C20SPC100', 'Huawei Secospace USG6500 V500R001C20SPC101', 'Huawei Secospace USG6500 V500R001C20SPC200', 'Huawei Secospace USG6600 V500R001C20SPC100', 'Huawei Secospace USG6600 V500R001C20SPC101', 'Huawei Secospace USG6600 V500R001C20SPC200']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "94538"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-8802"
    }
  },
  "description": "\u534e\u4e3aSecospace\u662f\u4e00\u6b3e\u7ec8\u7aef\u5b89\u5168\u7ba1\u7406\u7cfb\u7edf\u3002\r\n\r\n\u591a\u4e2a\u534e\u4e3aSecospace\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u7531\u4e8e\u672a\u5bf9\u7528\u6237\u590d\u5236\u7684\u6570\u636e\u8fdb\u884c\u8fb9\u754c\u68c0\u67e5\uff0c\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u53ef\u91cd\u542f\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6761\u4ef6\uff0c\u53ef\u80fd\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "discovererName": "Huawei",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-11668",
  "openTime": "2016-11-30",
  "patchDescription": "\u534e\u4e3aSecospace\u662f\u4e00\u6b3e\u7ec8\u7aef\u5b89\u5168\u7ba1\u7406\u7cfb\u7edf\u3002\r\n\r\n\u591a\u4e2a\u534e\u4e3aSecospace\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u7531\u4e8e\u672a\u5bf9\u7528\u6237\u590d\u5236\u7684\u6570\u636e\u8fdb\u884c\u8fb9\u754c\u68c0\u67e5\uff0c\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u53ef\u91cd\u542f\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6761\u4ef6\uff0c\u53ef\u80fd\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u4e2aHuawei Secospace\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Huawei Secospace USG6300 V500R001C20SPC100",
      "Huawei Secospace USG6300 V500R001C20SPC101",
      "Huawei Secospace USG6300 V500R001C20SPC200",
      "Huawei Secospace USG6500 V500R001C20SPC100",
      "Huawei Secospace USG6500 V500R001C20SPC101",
      "Huawei Secospace USG6500 V500R001C20SPC200",
      "Huawei Secospace USG6600 V500R001C20SPC100",
      "Huawei Secospace USG6600 V500R001C20SPC101",
      "Huawei Secospace USG6600 V500R001C20SPC200"
    ]
  },
  "referenceLink": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en",
  "serverity": "\u9ad8",
  "submitTime": "2016-11-28",
  "title": "\u591a\u4e2aHuawei Secospace\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2016-8802 (GCVE-0-2016-8802)

Vulnerability from cvelistv5

Published

2017-04-02 20:00

Modified

2024-08-06 02:35

Severity ?

CWE

buffer overflow

Summary

The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices, causing a buffer overflow and crashing the system.

References

▼	URL	Tags
	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/94538	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,	Version: Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:35:02.208Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en"
          },
          {
            "name": "94538",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/94538"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,"
            }
          ]
        }
      ],
      "datePublic": "2017-03-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices, causing a buffer overflow and crashing the system."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "buffer overflow",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-04-03T09:57:01",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en"
        },
        {
          "name": "94538",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/94538"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2016-8802",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Secospace USG6300,Secospace USG6500,Secospace USG6600 Secospace USG6300 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6500 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,Secospace USG6600 V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200,"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices, causing a buffer overflow and crashing the system."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "buffer overflow"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161125-01-usg-en"
            },
            {
              "name": "94538",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/94538"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2016-8802",
    "datePublished": "2017-04-02T20:00:00",
    "dateReserved": "2016-10-18T00:00:00",
    "dateUpdated": "2024-08-06T02:35:02.208Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted