CVE-2016-5435 Information

Description

Memory leak in Huawei IPS Module NGFW Module NIP6300 NIP6600 and Secospace USG6300 USG6500 USG6600 USG9500 and AntiDDoS8000 V500R001C00 before V500R001C20SPC100 when in hot standby networking where two devices are not directly connected allows remote attackers to cause a denial of service (memory consumption and reboot) via a crafted packet.

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160615-01-standby-en

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

5.9