CVE-2016-9494

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service.
References
Link Resource
https://www.kb.cert.org/vuls/id/614751 Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244 Third Party Advisory VDB Entry
https://www.kb.cert.org/vuls/id/614751 Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7740s:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:dw7000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7000s:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7000sm:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:01

Type Values Removed Values Added
References () https://www.kb.cert.org/vuls/id/614751 - Third Party Advisory, US Government Resource () https://www.kb.cert.org/vuls/id/614751 - Third Party Advisory, US Government Resource
References () https://www.securityfocus.com/bid/96244 - Third Party Advisory, VDB Entry () https://www.securityfocus.com/bid/96244 - Third Party Advisory, VDB Entry

Information

Published : 2018-07-13 20:29

Updated : 2024-11-21 03:01


NVD link : CVE-2016-9494

Mitre link : CVE-2016-9494

CVE.ORG link : CVE-2016-9494


JSON object : View

Products Affected

hughes

  • hn7740s
  • hn7000sm_firmware
  • hn7000sm
  • dw7000_firmware
  • hn7000s_firmware
  • hn7000s
  • dw7000
  • hn7740s_firmware
CWE
CWE-20

Improper Input Validation