CVE-2016-8786

Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00 have a denial of service (DoS) vulnerability. Due to the lack of input validation, a remote attacker may craft a malformed Resource Reservation Protocol (RSVP) packet and send it to the device, causing a few buffer overflows and occasional device restart.

Published: Mar 9, 2018
Updated: Apr 13, 2023
CVE: CVE-2016-8786
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
huawei / s12700_firmware	200r005c00	200r005c00.x
huawei / s12700_firmware	200r006c00	200r006c00.x
huawei / s12700_firmware	200r007c00	200r007c00.x
huawei / s12700_firmware	200r008c00	200r008c00.x
huawei / s5700_firmware	200r006c00	200r006c00.x
huawei / s5700_firmware	200r007c00	200r007c00.x
huawei / s5700_firmware	200r008c00	200r008c00.x
huawei / s6700_firmware	200r008c00	200r008c00.x
huawei / s7700_firmware	200r001c00	200r001c00.x
huawei / s7700_firmware	200r002c00	200r002c00.x
huawei / s7700_firmware	200r003c00	200r003c00.x
huawei / s7700_firmware	200r005c00	200r005c00.x
huawei / s7700_firmware	200r006c00	200r006c00.x
huawei / s7700_firmware	200r007c00	200r007c00.x
huawei / s7700_firmware	200r008c00	200r008c00.x
huawei / s9700_firmware	200r001c00	200r001c00.x
huawei / s9700_firmware	200r002c00	200r002c00.x
huawei / s9700_firmware	200r003c00	200r003c00.x
huawei / s9700_firmware	200r005c00	200r005c00.x
huawei / s9700_firmware	200r006c00	200r006c00.x
huawei / s9700_firmware	200r007c00	200r007c00.x
huawei / s9700_firmware	200r008c00	200r008c00.x

Vulnerability Database

289,697

CVE-2016-8786