CVE-2016-9494
Summary
| CVE | CVE-2016-9494 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-07-13 20:29:00 UTC |
| Updated | 2019-10-09 23:20:00 UTC |
| Description | Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Hughes | Dw7000 | - | All | All | All |
| Hardware | Hughes | Dw7000 | - | All | All | All |
| Operating System | Hughes | Dw7000 Firmware | 6.9.0.34 | All | All | All |
| Operating System | Hughes | Dw7000 Firmware | 6.9.0.34 | All | All | All |
| Hardware | Hughes | Hn7000s | - | All | All | All |
| Hardware | Hughes | Hn7000s | - | All | All | All |
| Hardware | Hughes | Hn7000sm | - | All | All | All |
| Hardware | Hughes | Hn7000sm | - | All | All | All |
| Operating System | Hughes | Hn7000sm Firmware | 6.9.0.34 | All | All | All |
| Operating System | Hughes | Hn7000sm Firmware | 6.9.0.34 | All | All | All |
| Operating System | Hughes | Hn7000s Firmware | 6.9.0.34 | All | All | All |
| Operating System | Hughes | Hn7000s Firmware | 6.9.0.34 | All | All | All |
| Hardware | Hughes | Hn7740s | - | All | All | All |
| Hardware | Hughes | Hn7740s | - | All | All | All |
| Operating System | Hughes | Hn7740s Firmware | 6.9.0.34 | All | All | All |
| Operating System | Hughes | Hn7740s Firmware | 6.9.0.34 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Vulnerability Note VU#614751 - Hughes satellite modems contain multiple vulnerabilities | CERT-VN | www.kb.cert.org | Third Party Advisory, US Government Resource |
| Multiple Hughes Satellite Modems VU#614751 Multiple Security Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.