CVE-2015-2800 Information

Description

The user authentication module in Huawei Campus switches S5700 S5300 S6300 and S6700 with software before V200R001SPH012 and S7700 S9300 and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication which trigger an array access violation.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-418554.htm http://www.securityfocus.com/bid/73355

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5