|Title:||Huawei Data Communication: Denial of Service Vulnerability on Several Products (huawei-sa-20171206-01-ssl)|
|Summary:||There is a denial of service vulnerability on several products.|
There is a denial of service vulnerability on several products.
There is a denial of service vulnerability on several products. The software does not correctly calculate the rest size in a buffer when handling SSL connections. A remote unauthenticated attacker could send a lot of crafted SSL messages to the device, successful exploit could cause no space in the buffer and then denial of service. (Vulnerability ID: HWPSIRT-2016-12099)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-15342.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references.
Successful exploit could cause no space in the buffer and then denial of service.
TE60 versions V600R006C00
TP3106 versions V100R002C00
eSpace U1981 versions V200R003C30SPC100
See the referenced vendor advisory for a solution.
Common Vulnerability Exposure (CVE) ID: CVE-2017-15342|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.