Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.143973 |
Category: | Huawei |
Title: | Huawei Data Communication: Memory Leak Vulnerability in Some Huawei Products (huawei-sa-20171201-01-router) |
Summary: | Some Huawei products have a memory leak vulnerability. |
Description: | Summary: Some Huawei products have a memory leak vulnerability. Vulnerability Insight: Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Resource ReServation Protocol (RSVP) Path Error or Path Tear packets to the affected products. Due to not release the memory to handle the packets, successful exploit will result in memory leak of the affected products and lead to a DoS condition. (Vulnerability ID: HWPSIRT-2017-02032)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-15349.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references. Vulnerability Impact: Successful exploit will result in memory leak of the affected products. Affected Software/OS: CloudEngine 12800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 CloudEngine 5800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 CloudEngine 6800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 CloudEngine 7800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00 Solution: See the referenced vendor advisory for a solution. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2017-15349 |
Copyright | Copyright (C) 2020 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |