Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.143973
Category:Huawei
Title:Huawei Data Communication: Memory Leak Vulnerability in Some Huawei Products (huawei-sa-20171201-01-router)
Summary:Some Huawei products have a memory leak vulnerability.
Description:Summary:
Some Huawei products have a memory leak vulnerability.

Vulnerability Insight:
Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Resource ReServation Protocol (RSVP) Path Error or Path Tear packets to the affected products. Due to not release the memory to handle the packets, successful exploit will result in memory leak of the affected products and lead to a DoS condition. (Vulnerability ID: HWPSIRT-2017-02032)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-15349.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references.

Vulnerability Impact:
Successful exploit will result in memory leak of the affected products.

Affected Software/OS:
CloudEngine 12800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00

CloudEngine 5800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00

CloudEngine 6800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00

CloudEngine 7800 versions V100R003C00 V100R005C00 V100R005C10 V100R006C00

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-15349
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.