Vulnerability CVE-2017-17296


Published: 2018-02-15

Description:
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V200R003C20SPC900, V200R003C30SPC200 have a memory leak vulnerability. An unauthenticated, remote attacker may send specially crafted H323 packages to the affected products. Due to not release the allocated memory properly to handle the packets, successful exploit may cause memory leak and some services abnormal.

Type:

CWE-772

Vendor: Huawei
Product: Te30 firmware 
Version: v600r006c00; v500r002c00;
Product: Rp200 firmware 
Version: v600r006c00; v500r002c00;
Product: Te40 firmware 
Version: v600r006c00; v500r002c00;
Product: Te50 firmware 
Version: v600r006c00; v500r002c00;
Product: Ngfw module firmware 
Version:
v500r002c10
v500r002c00
v500r001c20
v500r001c00
See more versions on NVD
Product: Dp300 firmware 
Version: v500r002c00;
Product: Rse6500 firmware 
Version: v500r002c00;
Product: Secospace usg6300 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Nip6800 firmware 
Version: v500r001c50;
Product: Nip6300 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Secospace usg6500 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Ips module firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Secospace usg6600 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Nip6600 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Usg9500 firmware 
Version:
v500r001c50
v500r001c30
v500r001c20
v500r001c00
See more versions on NVD
Product: Usg9520 firmware 
Version: v300r001c20; v300r001c01;
Product: Usg9560 firmware 
Version: v300r001c20; v300r001c01;
Product: Usg9580 firmware 
Version: v300r001c20; v300r001c01;
Product: Semg9811 firmware 
Version: v300r001c01;
Product: Srg1300 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
See more versions on NVD
Product: Ar2200-s firmware 
Version: v200r008c30; v200r008c20;
Product: Ar1200-s firmware 
Version: v200r008c30; v200r008c20;
Product: Ar3200 firmware 
Version:
v200r008c30
v200r008c20
v200r008c10
v200r008c00
v200r007c02
v200r007c01
See more versions on NVD
Product: Ar150 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
v200r007c01
See more versions on NVD
Product: Ar1200 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
v200r007c01
See more versions on NVD
Product: Ar160 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
v200r007c01
See more versions on NVD
Product: Netengine16ex firmware 
Version: v200r008c30; v200r008c20;
Product: Ar150-s firmware 
Version: v200r008c30; v200r008c20;
Product: Ar200 firmware 
Version:
v200r008c30
v200r008c20
v200r007c01
See more versions on NVD
Product: Ar120-s firmware 
Version: v200r008c30; v200r008c20;
Product: Ar200-s firmware 
Version: v200r008c30; v200r008c20;
Product: Ar2200 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
v200r007c01
See more versions on NVD
Product: Srg3300 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
See more versions on NVD
Product: Ar510 firmware 
Version: v200r008c30; v200r008c20;
Product: Srg2300 firmware 
Version:
v200r008c30
v200r008c20
v200r007c02
See more versions on NVD
Product: Ar3600 firmware 
Version: v200r008c20; v200r007c01;

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial

 References:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-buffer-en

Related CVE
CVE-2019-5263
HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305(MAC) and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtaine...
CVE-2019-5289
Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out-of-bounds read vulnerability due to the insufficient checks of the specific packet length. Attackers can construct invalid packets to attack the active and standby communication c...
CVE-2019-5280
The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attack...
CVE-2019-5223
PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution.
CVE-2019-5236
Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10), 8.1.0.154(C461), 8.1.0.154(C635), 8.1.0.156(C185), 8.1.0.156(C605), 8.1.0.159(C636) have a double free vulnerability. An attacker can trick a user to c...
CVE-2019-5222
There is an information disclosure vulnerability on Secure Input of certain Huawei smartphones in Versions earlier than Tony-AL00B 9.1.0.216(C00E214R2P1). The Secure Input does not properly limit certain system privilege. An attacker tricks the user ...
CVE-2019-5245
HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execu...
CVE-2019-5243
There is a Clickjacking vulnerability in Huawei HG255s product. An attacker may trick user to click a link and affect the integrity of a device by exploiting this vulnerability.

Copyright 2019, cxsecurity.com

 

Back to Top