CVE-2014-4190
Summary
| CVE | CVE-2014-4190 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-06-17 14:55:00 UTC |
| Updated | 2014-06-18 17:06:00 UTC |
| Description | Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet. |
Risk And Classification
Problem Types: CWE-119
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | Campus Lsw S9700 | - | All | All | All |
| Hardware | Huawei | Campus Lsw S9700 | - | All | All | All |
| Hardware | Huawei | Campus S2350 | - | All | All | All |
| Hardware | Huawei | Campus S2350 | - | All | All | All |
| Hardware | Huawei | Campus S2750 | - | All | All | All |
| Hardware | Huawei | Campus S2750 | - | All | All | All |
| Hardware | Huawei | Campus S3300hi | - | All | All | All |
| Hardware | Huawei | Campus S3300hi | - | All | All | All |
| Hardware | Huawei | Campus S3700hi | - | All | All | All |
| Hardware | Huawei | Campus S3700hi | - | All | All | All |
| Hardware | Huawei | Campus S5300 | - | All | All | All |
| Hardware | Huawei | Campus S5300 | - | All | All | All |
| Hardware | Huawei | Campus S5700 | - | All | All | All |
| Hardware | Huawei | Campus S5700 | - | All | All | All |
| Hardware | Huawei | Campus S6300 | - | All | All | All |
| Hardware | Huawei | Campus S6300 | - | All | All | All |
| Hardware | Huawei | Campus S6700 | - | All | All | All |
| Hardware | Huawei | Campus S6700 | - | All | All | All |
| Hardware | Huawei | Campus S7700 | - | All | All | All |
| Hardware | Huawei | Campus S7700 | - | All | All | All |
| Hardware | Huawei | Campus S9300 | - | All | All | All |
| Hardware | Huawei | Campus S9300 | - | All | All | All |
| Hardware | Huawei | Campus S9300e | - | All | All | All |
| Hardware | Huawei | Campus S9300e | - | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r001 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r002 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r003 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r005 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r001 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r002 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r003 | All | All | All |
| Application | Huawei | Campus Series Switch Software | v200r005 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory-Multiple Heap Overflow Vulnerabilities in Huawei Campus Series Switches - Huawei PSIRT | CONFIRM | www.huawei.com | Vendor Advisory |
| Huawei Campus Series Switches Multiple Remote Heap Buffer Overflow Vulnerabilities | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.