Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huaweiHuawei TechnologiesHUAWEI-SA-20160907-01-TCP
HistorySep 07, 2016 - 12:00 a.m.

Security Advisory - TCP Connection Hijack Vulnerability

2016-09-0700:00:00
Huawei Technologies
www.huawei.com
40

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

EPSS

0.004

Percentile

75.1%

JSON

There is a vulnerability in the implementation of the RFC 5961, due to the improper determination of the rate of challenge ACK responses by the global rate limit feature. Successful exploit could allow an unauthenticated, remote attacker to reset or hijack into a TCP connections between two systems, resulting in a DoS condition. (Vulnerability ID: HWPSIRT-2016-08060)

This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-5696.

Huawei has released software updates to fix these vulnerabilities. This advisory is available at the following link:

<http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160907-01-tcp-en&gt;

Affected configurations

Vulners
Node
huaweihi3521aMatchv100r001c01spc020
OR
huaweihi3531aMatchv100r001c01spc010
OR
huaweihi3536Matchv100r001c01spc010
OR
huaweihi3536Matchv100r001c01spc030
OR
huaweihidptandroidMatchv200r001c01
OR
huaweihidptandroidMatchv300r001c00
OR
huaweihuawei_solutions_for_sap_hanaRange<V100R001C01SPC103
OR
huaweioceanstor_18500_firmwareMatchv300r003c10spc100
OR
huaweioceanstor_18800_firmwareMatchv300r003c10spc100
OR
huaweioceanstor_2800_firmwareMatchv300r001c00sph201
OR
huaweioceanstor_5500_firmwareMatchv300r003c10spc100
OR
huaweioceanstor_5600_v3_firmwareMatchv300r003c10spc100
OR
huaweioceanstor_5800_v3Matchv300r003c10spc100
OR
huaweioceanstor_5800_v3Matchv300r003c10spc100
OR
huaweioceanstor_9000_firmwareMatchv100r001c30
OR
huaweioceanstor_9000_firmwareMatchv300r005c00
OR
huaweirh1288_v3_firmwareMatchv100r003c00
OR
huaweifusionserver_rh1288a_v2Matchv100r002c00
OR
huaweifusionserver_rh2288_v3Matchv100r003c00
OR
huaweirh2288a_v2_firmwareMatchv100r002c00
OR
huaweifusionserver_rh2288h_v3Matchv100r003c00
OR
huaweirh5885_v3_firmwareMatchv100r003c00
OR
huaweitecal_rh5885h_v3_firmwareMatchv100r003c10
OR
huaweifusionserver_rh8100_v3Matchv100r003c00
OR
huaweix6800Matchv100r003c00

Related

ubuntucve 1
nessus 46
openvas 33
redhatcve 1
paloalto 1
f5 2
ibm 2
redhat 8
fortinet 1
arista 1
debiancve 1
centos 2
prion 2
cve 2
oraclelinux 6
archlinux 4
symantec 1
thn 2
nvd 2
cvelist 1
veracode 1
threatpost 1
ubuntu 8
fedora 2
debian 3
osv 2
amazon 1
mageia 3
suse 11
androidsecurity 1
lenovo 1
ubuntucve
ubuntucve
CVE-2016-5696
2016-08-06 00:00:00
nessus
nessus
Scientific Linux Security Update : kernel on SL7.x x86_64 (20160818)
2016-08-22 00:00:00
Arista Networks EOS tcp_input Challenge ACKs Shared Counter Disclosure (SA0023)
2018-02-28 00:00:00
CentOS 7 : kernel (CESA-2016:1633)
2016-08-22 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2016:1664-01
2016-08-24 00:00:00
Palo Alto PAN-OS Kernel Vulnerability
2017-05-23 00:00:00
CentOS Update for kernel CESA-2016:1664 centos6
2016-08-25 00:00:00
redhatcve
redhatcve
CVE-2016-5696
2016-07-12 08:48:22
paloalto
paloalto
Kernel Vulnerability
2017-05-23 03:00:00
f5
f5
K46514822 : Linux TCP stack vulnerability CVE-2016-5696
2016-08-26 00:00:00
SOL46514822 - Linux TCP stack vulnerability CVE-2016-5696
2016-08-26 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in Linux Kernel affects SAN Volume Controller, Storwize family and FlashSystem V9000 products (CVE-2016-5696)
2023-03-29 01:48:02
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:34:02
redhat
redhat
(RHSA-2016:1631) Important: realtime-kernel security and bug fix update
2016-08-18 15:32:31
(RHSA-2016:1632) Important: kernel-rt security and bug fix update
2016-08-18 15:33:21
(RHSA-2016:1664) Important: kernel security and bug fix update
2016-08-23 15:01:18
fortinet
fortinet
Linux kernel - challenge ack information leak
2017-04-04 00:00:00
arista
arista
Security Advisory 0023
2016-08-15 00:00:00
debiancve
debiancve
CVE-2016-5696
2016-08-06 20:59:05
centos
centos
kernel, perf, python security update
2016-08-23 20:59:58
kernel, perf, python security update
2016-08-20 02:00:21
prion
prion
Design/Logic Flaw
2016-08-06 20:59:00
Design/Logic Flaw
2016-07-13 16:59:00
cve
cve
CVE-2016-5696
2016-08-06 20:59:05
CVE-2016-5389
2016-07-13 16:59:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-08-15 00:00:00
kernel security and bug fix update
2016-08-23 00:00:00
Unbreakable Enterprise kernel security update
2016-08-15 00:00:00
archlinux
archlinux
linux-lts: information disclosure
2016-08-21 00:00:00
linux-grsec: information disclosure
2016-08-14 00:00:00
linux: information disclosure
2016-08-14 00:00:00
symantec
symantec
SA131 : TCP Session Hijacking in Operating Systems Supporting RFC 5961
2016-09-14 08:00:00
thn
thn
Internet Traffic Hijacking Linux Flaw Affects 80% of Android Devices
2016-08-16 01:31:00
Linux TCP Flaw allows Hackers to Hijack Internet Traffic and Inject Malware Remotely
2016-08-10 23:18:00
nvd
nvd
CVE-2016-5696
2016-08-06 20:59:05
CVE-2016-5389
2016-07-13 16:59:00
cvelist
cvelist
CVE-2016-5696
2016-08-06 20:00:00
veracode
veracode
TCP Session Hijack
2019-01-15 09:12:58
threatpost
threatpost
Serious TCP Bug in Linux Systems Allows Traffic Hijacking
2016-08-10 12:55:01
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2016-08-29 00:00:00
Linux kernel vulnerabilities
2016-08-29 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2016-08-29 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: kernel-4.6.4-201.fc23
2016-07-19 22:24:43
[SECURITY] Fedora 24 Update: kernel-4.6.4-301.fc24
2016-07-20 00:27:07
debian
debian
[SECURITY] [DSA 3659-1] linux security update
2016-09-04 17:24:55
[SECURITY] [DSA 3659-1] linux security update
2016-09-04 17:24:55
[SECURITY] [DLA 609-1] linux security update
2016-09-03 11:53:47
osv
osv
linux - security update
2016-09-04 00:00:00
linux - security update
2016-09-03 00:00:00
amazon
amazon
Medium: kernel
2016-08-01 13:30:00
mageia
mageia
Updated kernel-tmb packages fix security vulnerabilities
2016-08-31 18:32:33
Updated kernel packages fix security vulnerability
2016-07-31 23:39:13
Update request kernel-linus-4.4.26-1 fixes security issues
2016-11-04 10:58:56
suse
suse
Security update for the Linux Kernel (important)
2016-12-09 18:11:19
Security update for the Linux Kernel (important)
2016-12-06 13:08:43
Security update for the Linux Kernel (important)
2016-12-02 16:14:43
androidsecurity
androidsecurity
Android Security Bulletin—October 2016
2016-10-03 00:00:00
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

EPSS

0.004

Percentile

75.1%

JSON
Related for HUAWEI-SA-20160907-01-TCP
ubuntucve1nessus46openvas33redhatcve1paloalto1f52ibm2redhat8fortinet1arista1debiancve1centos2prion2cve2oraclelinux6archlinux4symantec1thn2nvd2cvelist1veracode1threatpost1ubuntu8fedora2debian3osv2amazon1mageia3suse11androidsecurity1lenovo1