Details of VAR-201406-0166

ID

VAR-201406-0166

CVE

CVE-2014-4190

TITLE

Huawei Campus Heap-Based Buffer Overflow Vulnerability in Series Switch Software

Trust: 0.8

sources: JVNDB: JVNDB-2014-002959

DESCRIPTION

Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet. Huawei Campus Series Switches is China's Huawei series of Campus switches. A heap buffer overflow vulnerability exists in Huawei Campus Series Switches. The program failed to restrict access to heap memory. An attacker could exploit the vulnerability to cause a denial of service. The Huawei Campus family router has a boundary error when processing certain length fields in the packet. Because the packet is overflowed by sending a specially crafted packet, the affected device is restarted

Trust: 3.06

sources: NVD: CVE-2014-4190 // JVNDB: JVNDB-2014-002959 // CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // BID: 67907 // VULHUB: VHN-72130

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 1.2

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495

AFFECTED PRODUCTS

vendor:	huawei	model:	campus series switch software	scope:	eq	version:	v200r002	Trust: 1.6
vendor:	huawei	model:	campus series switch software	scope:	eq	version:	v200r003	Trust: 1.6
vendor:	huawei	model:	campus series switch software	scope:	eq	version:	v200r001	Trust: 1.6
vendor:	huawei	model:	campus series switch software	scope:	eq	version:	v200r005	Trust: 1.6
vendor:	huawei	model:	campus series switches	scope:	-	version:	-	Trust: 1.2
vendor:	huawei	model:	campus s9300e	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s6700	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s3700hi	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s2350	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s7700	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s9300	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s5700	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s3300hi	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s5300	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s2750	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus s6300	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus lsw s9700	scope:	eq	version:	-	Trust: 1.0
vendor:	huawei	model:	campus lsw s9700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s2350	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s2750	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s3300hi	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s3700hi	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s5300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s5700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s6300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s6700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s7700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s9300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus s9300e	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	campus series switche software	scope:	eq	version:	v200r001c00spc300	Trust: 0.8
vendor:	huawei	model:	campus series switche software	scope:	eq	version:	v200r002c00spc100	Trust: 0.8
vendor:	huawei	model:	campus series switche software	scope:	eq	version:	v200r003c00spc300	Trust: 0.8
vendor:	huawei	model:	campus series switche software	scope:	eq	version:	v200r003c00spc500	Trust: 0.8

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // JVNDB: JVNDB-2014-002959 // CNNVD: CNNVD-201406-341 // NVD: CVE-2014-4190

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2014-4190
value:	HIGH
Trust: 1.0
NVD:	CVE-2014-4190
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2014-03712
value:	MEDIUM
Trust: 0.6
CNVD:	CNVD-2014-03495
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201406-341
value:	HIGH
Trust: 0.6
VULHUB:	VHN-72130
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2014-4190
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2014-03712
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
CNVD:	CNVD-2014-03495
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-72130
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // VULHUB: VHN-72130 // JVNDB: JVNDB-2014-002959 // CNNVD: CNNVD-201406-341 // NVD: CVE-2014-4190

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-72130 // JVNDB: JVNDB-2014-002959 // NVD: CVE-2014-4190

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201406-341

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201406-341

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-002959

PATCH

title:	Huawei-SA-20140604-01-Campus	url:	http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-343218.htm	Trust: 0.8
title:	Huawei Campus Series Switches Patch for Buffer Buffer Overflow Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/46492	Trust: 0.6
title:	Huawei Campus Series Routers have multiple patches for remote heap buffer overflow vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/46173	Trust: 0.6

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // JVNDB: JVNDB-2014-002959

EXTERNAL IDS

db:	BID	id:	67907	Trust: 3.2
db:	NVD	id:	CVE-2014-4190	Trust: 2.8
db:	JVNDB	id:	JVNDB-2014-002959	Trust: 0.8
db:	CNNVD	id:	CNNVD-201406-341	Trust: 0.7
db:	CNVD	id:	CNVD-2014-03712	Trust: 0.6
db:	CNVD	id:	CNVD-2014-03495	Trust: 0.6
db:	VULHUB	id:	VHN-72130	Trust: 0.1

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // VULHUB: VHN-72130 // BID: 67907 // JVNDB: JVNDB-2014-002959 // CNNVD: CNNVD-201406-341 // NVD: CVE-2014-4190

REFERENCES

url:	http://www.securityfocus.com/bid/67907	Trust: 2.9
url:	http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-343218.htm	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-4190	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-4190	Trust: 0.8
url:	http://www.huawei.com/	Trust: 0.3

sources: CNVD: CNVD-2014-03712 // CNVD: CNVD-2014-03495 // VULHUB: VHN-72130 // BID: 67907 // JVNDB: JVNDB-2014-002959 // CNNVD: CNNVD-201406-341 // NVD: CVE-2014-4190

CREDITS

The vendor reported these issues.

Trust: 0.3

sources: BID: 67907

SOURCES

db:	CNVD	id:	CNVD-2014-03712
db:	CNVD	id:	CNVD-2014-03495
db:	VULHUB	id:	VHN-72130
db:	BID	id:	67907
db:	JVNDB	id:	JVNDB-2014-002959
db:	CNNVD	id:	CNNVD-201406-341
db:	NVD	id:	CVE-2014-4190

LAST UPDATE DATE

2025-04-13T23:29:42.969000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-03712	date:	2014-06-24T00:00:00
db:	CNVD	id:	CNVD-2014-03495	date:	2014-06-06T00:00:00
db:	VULHUB	id:	VHN-72130	date:	2014-06-18T00:00:00
db:	BID	id:	67907	date:	2014-06-25T16:35:00
db:	JVNDB	id:	JVNDB-2014-002959	date:	2014-06-19T00:00:00
db:	CNNVD	id:	CNNVD-201406-341	date:	2014-06-18T00:00:00
db:	NVD	id:	CVE-2014-4190	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-03712	date:	2014-06-18T00:00:00
db:	CNVD	id:	CNVD-2014-03495	date:	2014-06-06T00:00:00
db:	VULHUB	id:	VHN-72130	date:	2014-06-17T00:00:00
db:	BID	id:	67907	date:	2014-06-05T00:00:00
db:	JVNDB	id:	JVNDB-2014-002959	date:	2014-06-19T00:00:00
db:	CNNVD	id:	CNNVD-201406-341	date:	2014-06-17T00:00:00
db:	NVD	id:	CVE-2014-4190	date:	2014-06-17T14:55:08.940