Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00 have a denial of service (DoS) vulnerability. Due to the lack of input validation, a remote attacker may craft a malformed Resource Reservation Protocol (RSVP) packet and send it to the device, causing a few buffer overflows and occasional device restart.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161228-01-rsvp-en | Vendor Advisory |
http://www.securityfocus.com/bid/95139 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Information
Published : 2018-03-09 13:29
Updated : 2018-03-26 08:23
NVD link : CVE-2016-8786
Mitre link : CVE-2016-8786
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
huawei
- s9700_firmware
- s5700
- s9700
- s6700_firmware
- s12700
- s12700_firmware
- s5700_firmware
- s7700_firmware
- s6700
- s7700