CVE-2012-5970 - The Huawei E585 device allows remote attackers to cause a denial of service (NULL pointer dereferenc

CVE Details

CVE-2012-5970

Summary

The Huawei E585 device allows remote attackers to cause a denial of service (NULL pointer dereference and device outage) via crafted HTTP requests, as demonstrated by unspecified vulnerability-scanning software.

References

http://www.kb.cert.org/vuls/id/871148
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198240.htm

Vulnerable Configurations

cpe:2.3:h:huawei:e585:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:e585:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:e585u-82:-:*:*:*:*:*:*:*
cpe:2.3:h:huawei:e585u-82:-:*:*:*:*:*:*:*

CVSS

Base:	6.1 (as of 29-01-2013 - 05:00)
Impact:	6.9
Exploitability:	6.5

CWE

NVD-CWE-Other

CAPEC

Click the CAPEC title to display a description

Access

Vector	Complexity	Authentication
ADJACENT_NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:A/AC:L/Au:N/C:N/I:N/A:C

refmap via4

cert-vn	VU#871148
confirm	http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198240.htm

Last major update

29-01-2013 - 05:00

Published

19-12-2012 - 11:55

Last modified

29-01-2013 - 05:00