CVE-2014-4706 Information

Description

Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300V200R003C00SPC300V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300V200R002C00SPC100V200R003C00SPC300; S5700 with software V200R001C00SPC300V200R003C00SPC300; S6300 with software V200R001C00SPC300V200R002C00SPC100V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300V200R002C00SPC100V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300V200R003C00SPC300V200R003C00SPC500; S9300E with software V200R003C00SPC300V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack aka a heap overflow.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

http://www.huawei.com/en/psirt/security-advisories/hw-343218

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5