Test ID:	1.3.6.1.4.1.25623.1.0.143943
Category:	Huawei
Title:	Huawei Data Communication: DoS Vulnerability in Huawei Firewall (huawei-sa-20161214-01-firewall)
Summary:	There is a denial of service (DoS) vulnerability in Huawei firewalls due to no memory release after the execution of a specific command.
Description:	Summary: There is a denial of service (DoS) vulnerability in Huawei firewalls due to no memory release after the execution of a specific command. Vulnerability Insight: There is a denial of service (DoS) vulnerability in Huawei firewalls due to no memory release after the execution of a specific command. A remote attacker with specific permission can log in to a device and deliver a large number of such commands to exhaust memory, causing a DoS condition. (Vulnerability ID: HWPSIRT-2016-06075)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-8781.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references. Vulnerability Impact: Successful exploit could exhaust system memory, causing a DoS condition. Affected Software/OS: Secospace USG6300 versions V500R001C20SPC200 V500R001C20SPC200PWE Secospace USG6500 versions V500R001C20SPC200 Secospace USG6600 versions V500R001C20SPC200 V500R001C20SPC200PWE Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-8781 BugTraq ID: 94927 http://www.securityfocus.com/bid/94927
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.