Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv2

CVE-2012-4960

Published: 20/06/2013 Updated: 22/08/2013
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Huawei

Vulnerability Summary

The Huawei NE5000E, MA5200G, NE40E, NE80E, ATN, NE40, NE80, NE20E-X6, NE20, ME60, CX600, CX200, CX300, ACU, WLAN AC 6605, S9300, S7700, S2300, S3300, S5300, S3300HI, S5300HI, S5306, S6300, S2700, S3700, S5700, S6700, AR G3, H3C AR(OEM IN), AR 19, AR 29, AR 49, Eudemon100E, Eudemon200, Eudemon300, Eudemon500, Eudemon1000, Eudemon1000E-U/USG5300, Eudemon1000E-X/USG5500, Eudemon8080E/USG9300, Eudemon8160E/USG9300, Eudemon8000E-X/USG9500, E200E-C/USG2200, E200E-X3/USG2200, E200E-X5/USG2200, E200E-X7/USG2200, E200E-C/USG5100, E200E-X3/USG5100, E200E-X5/USG5100, E200E-X7/USG5100, E200E-B/USG2100, E200E-X1/USG2100, E200E-X2/USG2100, SVN5300, SVN2000, SVN5000, SVN3000, NIP100, NIP200, NIP1000, NIP2100, NIP2200, and NIP5100 use the DES algorithm for stored passwords, which makes it easier for context-dependent malicious users to obtain cleartext passwords via a brute-force attack.

Vulnerable Product Search on Vulmon Subscribe to Product

huawei ma5200g v300r003

huawei ma5200g v200r003

huawei ne40e v300r005

huawei atn v200r001c00

huawei atn v200r001c01

huawei me60 v600r002

huawei me60 v600r003

huawei cx300 v100r005

huawei acu v100r003c01spc100

huawei acu v200r001c00spc100

huawei s9300 v100r006

huawei s7700 v100r003

huawei s5300 v100r003

huawei s2300 v100r005

huawei s3300hi v100r006

huawei s5300hi v100r006

huawei s3300hi v200r001

huawei s5300hi v200r001

huawei ar g3 v200r001c01

huawei ar g3 v200r002c00spc200

huawei eudemon usg5500

huawei eudemon 8160e

huawei e200x5

huawei e200x7

huawei h3c ar\\(oem in\\)

huawei eudemon500

huawei svn3000 v100r002c02spc802b041

huawei svn5000 v200r001c00

huawei ne40e v600r001

huawei ne80e v600r001

huawei ne40 v300r005

huawei ne80 v300r005

huawei me60 v600r005c00spc600

huawei cx600 v200r002

huawei acu v200r001c00

huawei wlan ac 6605 v200r001c00

huawei s7700 v100r006

huawei s2300 v100r002

huawei s3300 v100r005

huawei s5300 v100r005

huawei s5306 v100r006

huawei s6300 v100r006

huawei s5306 v200r001

huawei s6300 v200r001

huawei ar 19\\/29\\/49

huawei eudemon100e v200r007

huawei eudemon 8080e

huawei eudemon usg9300

huawei e200 usg2200

huawei e200 usg5100

huawei eudemon1000

huawei nip5100 v100r001c00

huawei nip2200 v100r001c00

huawei svn2000 v200r001c00

huawei svn5300 v100r001c01b019

huawei ne40e\\/80e v600r002

huawei ne80e v600r002

huawei ne20e-x6 v300r005

huawei ne20 v200r005

huawei cx600 v600r001

huawei cx600 v600r002

huawei wlan ac 6605 v200r001c00spc100

huawei s9300 v100r001

huawei s2300 v100r003

huawei s3300 v100r002

huawei s3700 v100r005

huawei s5700 v100r005

huawei s2700 v100r006

huawei s3700 v100r006

huawei s3700 v200r001

huawei s5700 v200r001

huawei eudemon200 v200r001

huawei eudemon300

huawei eudemon1000e-u

huawei eudemon8000e-x

huawei eudemon usg9500

huawei e200e-b

huawei e200e-x1

huawei nip2100 v100r001c00

huawei nip1000 v100r001

huawei ne5000e v300r007

huawei ne5000e v800r002

huawei ne40e\\/80e v600r003

huawei ne80e v600r003

huawei me60 v100r005

huawei me60 v100r006

huawei cx600 v600r003

huawei cx200 v100r005

huawei s9300 v100r002

huawei s9300 v100r003

huawei s3300 v100r003

huawei s5300 v100r002

huawei s2300 v100r006

huawei s3300 v100r006

huawei s5300 v100r006

huawei s5700 v100r006

huawei s6700 v100r006

huawei s6700 v200r001

huawei ar g3 v200r001c00

huawei eudemon usg5300

huawei eudemon1000e-x

huawei e200e-c

huawei e200x3

huawei e200e-x2

huawei e200e-usg2100

huawei nip200 v100r001

huawei nip100 v100r001

Exploits

Exploit DB: Huawei (Multiple Products) - Password Encryption
source: wwwsecurityfocuscom/bid/56510/info Multiple Huawei products are prone to a weak password encryption weakness Successful exploits may allow an attacker to decrypt stored passwords; this may aid in further attacks The following are vulnerable: Huawei Quidway series Huawei CX600 V600R001 Huawei CX600 V600R003C00SPC900 Huawei ME6 ...

References

CWE-310http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-u_194373.htmhttp://www.kb.cert.org/vuls/id/948096https://nvd.nist.govhttps://www.exploit-db.com/exploits/38020/https://www.kb.cert.org/vuls/id/948096
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook