 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.143950 |
| Kategorie: | Huawei |
| Titel: | Huawei Data Communication: MaxAge LSA Vulnerability in OSPF Protocol of Some Huawei Products (huawei-sa-20170720-01-ospf) |
| Zusammenfassung: | Some Huawei products have a MaxAge LSA vulnerability due to improper OSPF implementation. |
| Beschreibung: | Summary: Some Huawei products have a MaxAge LSA vulnerability due to improper OSPF implementation. Vulnerability Insight: Some Huawei products have a MaxAge LSA vulnerability due to improper OSPF implementation. When the device receives special LSA packets, the LS (Link Status) age would be set to MaxAge, 3600 seconds. An attacker can exploit this vulnerability to poison the route table and launch a DoS attack. (Vulnerability ID: HWPSIRT-2017-06059)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-8147.Huawei has released software updates to fix this vulnerability. Vulnerability Impact: An attacker can exploit this vulnerability to poison the route table and launch a DoS attack. Affected Software/OS: AC6005 versions V200R006C10SPC200 AC6605 versions V200R006C10SPC200 AR1200 versions V200R005C10CP0582T V200R005C10HP0581T V200R005C20SPC026T AR200 versions V200R005C20SPC026T AR3200 versions V200R005C20SPC026T CloudEngine 12800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00 CloudEngine 5800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00 CloudEngine 6800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00 CloudEngine 7800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00 CloudEngine 8800 versions V100R006C00 V200R001C00 E600 versions V200R008C00 NE20E-S versions V800R005C01SPC100 V800R005C01SPC200 V800R006C00SPC300 V800R007C00SPC200 V800R007C10SPC100 V800R008C10SPC300 V800R008C10SPC500 S12700 versions V200R005C00 V200R006C00 V200R007C00 V200R008C00 S1700 versions V100R006C00 V100R007C00 V200R006C00 S2300 versions V100R005C00 V100R006C00 V100R006C03 V100R006C05 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R005C01 V200R005C02 V200R005C03 V200R006C00 V200R007C00 V200R008C00 S2700 versions V100R005C00 V100R006C00 V100R006C03 V100R006C05 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R005C01 V200R005C02 V200R005C03 V200R006C00 V200R007C00 V200R008C00 S5300 versions V100R005C00 V100R006C00 V100R006C01 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00 S5700 versions V100R005C00 V100R006C00 V100R006C01 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00 S6300 versions V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R008C00 S6700 versions V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00 S7700 versions V100R003C00 V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00 S9300 versions V100R001C00 V100R002C00 V100R003C00 V100R006C00 V200R001C00 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00 V200R008C10 S9700 versions V200R001C00 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00 Secospace USG6600 versions V500R001C00 V500R001C00SPC050 V500R001C20 V500R001C30 Solution: S12700 Resolved Product and Version: V200R009C00 Secospace USG6600 Resolved Product and Version: V500R001C60SPC300 S6700 Resolved Product and Version: V200R009C00 CloudEngine 8800 Resolved Product and Version: V200R002C50 S5700 Resolved Product and Version: V200R009C00 S1700 Resolved Product and Version: V200R009C00 S2300 Resolved Product and Version: V200R009C00 S6300 Resolved Product and Version: V200R009C00 S9300 Resolved Product and Version: V200R009C00 AC6005 Resolved Product and Version: V2R6C20 S9700 Resolved Product and Version: V200R009C00 Secospace USG6600 Resolved Product and Version: V500R001C30SPC600 AR1200 Resolved Product and Version: v200r007c00spcb00 CloudEngine 5800 Resolved Product and Version: V200R002C50 AR3200 Resolved Product and Version: v200r007c00spcb00 E600 Resolved Product and Version: V200R009C00 S5300 Resolved Product and Version: V200R009C00 CloudEngine 6800 Resolved Product and Version: V200R002C50 NE20E-S Resolved Product and Version: V800R009C10SPC200 CloudEngine 12800 Resolved Product and Version: V200R002C54 CloudEngine 12800 Resolved Product and Version: V200R002C53 S2700 Resolved Product and Version: V200R009C00 CloudEngine 12800 Resolved Product and Version: V200R002C50 CloudEngine 7800 Resolved Product and Version: V200R002C50 AR200 Resolved Product and Version: v200r007c00spcb00 CloudEngine 12800 Resolved Product and Version: V200R002C52 S7700 Resolved Product and Version: V200R009C00 CloudEngine 12800 Resolved Product and Version: V200R002C51 AC6605 Resolved Product and Version: V2R6C20 CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2017-8147 |
| Copyright | Copyright (C) 2020 Greenbone Networks GmbH |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |