CVE-2014-4190 Information

Description

Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI S5700 S6700 S3300HI S5300 S6300 S9300 S7700 and LSW S9700 with software V200R001 before V200R001SPH013; S5700 S6700 S5300 and S6300 with software V200R002 before V200R002SPH005; S7700 S9300 S9300E S5300 S5700 S6300 S6700 S2350 S2750 and LSW S9700 with software V200R003 before V200R003SPH005; and S7700 S9300 S9300E and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.

Reference

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-343218.htm http://www.securityfocus.com/bid/67907