CVE-2016-6669

Buffer overflow in the Authentication, Authorization and Accounting (AAA) module in Huawei USG2100, USG2200, USG5100, and USG5500 unified security gateways with software before V300R001C10SPC600 allows remote authenticated RADIUS servers to execute arbitrary code by sending a crafted EAP packet.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:huawei:usg2100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg2100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg2200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg2200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg5100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg5100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg5500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg5500_firmware:*:*:*:*:*:*:*:*
OR cpe:2.3:h:huawei:usg2100:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg2200:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5100:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5500:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-09-22 15:59

Updated : 2024-02-28 15:21


NVD link : CVE-2016-6669

Mitre link : CVE-2016-6669

CVE.ORG link : CVE-2016-6669


JSON object : View

Products Affected

huawei

  • usg5100_firmware
  • usg2100_firmware
  • usg5500
  • usg2100
  • usg5100
  • usg5500_firmware
  • usg2200
  • usg2200_firmware
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer