Huawei USG9520/USG9560/USG9580 V300R001C01 DHCP Request input validation

A vulnerability was found in Huawei USG9520, USG9560 and USG9580 V300R001C01. It has been classified as problematic. Affected is an unknown function of the component DHCP Request Handler. The manipulation leads to improper input validation. Using CWE to declare the problem leads to CWE-20. The bug was discovered 10/26/2016. The weakness was disclosed 04/02/2017 as sa-20161116-01 (Website). The advisory is available at huawei.com. This vulnerability is traded as CVE-2016-8796. It is possible to launch the attack remotely. There are no technical details available. There is no exploit available. The structure of the vulnerability defines a possible price range of USD $5k-$25k at the moment. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 158 days. As 0-day the estimated underground price was around $5k-$25k. It is recommended to applying a restrictive firewalling. A possible mitigation has been published even before and not after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 94405).

Field04/03/2017 09:08 AM11/24/2022 03:29 PM
vendorHuaweiHuawei
nameUSG9520/USG9560/USG9580USG9520/USG9560/USG9580
versionV300R001C01V300R001C01
componentDHCP Request HandlerDHCP Request Handler
discoverydate14774400001477440000
cwe20 (input validation)20 (input validation)
risk11
cvss2_vuldb_basescore4.34.3
cvss2_vuldb_tempscore4.14.1
cvss2_vuldb_avNN
cvss2_vuldb_acMM
cvss2_vuldb_auNN
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiPP
cvss2_nvd_avNN
cvss2_nvd_acLL
cvss2_nvd_auNN
cvss2_nvd_ciNN
cvss2_nvd_iiNN
cvss2_nvd_aiCC
cvss3_meta_basescore6.46.4
cvss3_meta_tempscore6.26.3
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.25.2
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aLL
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prNN
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cNN
cvss3_nvd_iNN
cvss3_nvd_aHH
date1491091200 (04/02/2017)1491091200 (04/02/2017)
urlhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-firewall-enhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-firewall-en
confirm_urlhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-firewall-enhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-firewall-en
price_0day$5k-$25k$5k-$25k
nameFirewallFirewall
cveCVE-2016-8796CVE-2016-8796
cve_assigned1476748800 (10/18/2016)1476748800 (10/18/2016)
cve_nvd_published14910912001491091200
cve_nvd_summaryHuawei USG9520 V300R001C01, USG9560 V300R001C01, and USG9580 V300R001C01 allow unauthenticated attackers to send abnormal DHCP request packets to the affected products to trigger a DoS condition.Huawei USG9520 V300R001C01, USG9560 V300R001C01, and USG9580 V300R001C01 allow unauthenticated attackers to send abnormal DHCP request packets to the affected products to trigger a DoS condition.
osvdb_titleCVE-2016-8796 - Huawei - Multiple Products - Denial of Service IssueCVE-2016-8796 - Huawei - Multiple Products - Denial of Service Issue
securityfocus9440594405
securityfocus_date1479254400 (11/16/2016)1479254400 (11/16/2016)
securityfocus_classFailure to Handle Exceptional ConditionsFailure to Handle Exceptional Conditions
securityfocus_titleMultiple Huawei Products CVE-2016-8796 Denial of Service VulnerabilityMultiple Huawei Products CVE-2016-8796 Denial of Service Vulnerability
locationWebsiteWebsite
cvss2_vuldb_eNDND
cvss2_vuldb_rlWW
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlWW
cvss3_vuldb_rcXX
0day_days158158
cvss3_nvd_basescore7.57.5
identifiersa-20161116-01
cvss2_nvd_basescore7.8

Interested in the pricing of exploits?

See the underground prices here!