Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2012-6570

Published: 20/06/2013 Updated: 21/06/2013
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Ar 28\/46

Vulnerability Summary

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches does not check whether HTTP data is longer than the value of the Content-Length field, which allows remote HTTP servers to conduct heap-based buffer overflow attacks and execute arbitrary code via a crafted response.

Vulnerable Product Search on Vulmon Subscribe to Product

huawei ar 28\\/46

huawei ar 18-3x

huawei ar 18-2x

huawei ar 18-1x

huawei ar 19\\/29\\/49

huawei s8500 r1631

huawei s8500 r1632

huawei s2000 r6305

huawei s3000 r6305

huawei s3900 r6305

huawei s5600 r6305

huawei s3300 r6305

huawei s3300hi r6305

huawei s3700 r6305

huawei s3500 r6305

huawei s2300 r6305

huawei s2700 r6305

huawei s5100 r6305

huawei s7800 r6305

References

CWE-119http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-u_194361.htmhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcodedarbitrary codeCVE-2024-2404CVE-2024-21111CVE-2024-28627CVE-2024-4073information disclosureCVE-2024-32780CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook