PT-2015-7721 · Huawei · Espace U1960+5
Publicado
2015-11-19
·
Atualizado
2015-11-20
·
CVE-2015-8083
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Huawei eSpace U1910 versions prior to V200R003C00SPC300
Huawei eSpace U1911 versions prior to V200R003C00SPC300
Huawei eSpace U1930 versions prior to V200R003C00SPC300
Huawei eSpace U1960 versions prior to V200R003C00SPC300
Huawei eSpace U1980 versions prior to V200R003C00SPC300
Huawei eSpace U1981 versions prior to V200R003C00SPC300
Description
The issue is related to improper memory initialization when processing timeout messages in an unspecified module. This can be exploited by remote attackers to cause a denial of service, resulting in out-of-bounds memory access and device restart.
Recommendations
For Huawei eSpace U1910 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1911 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1930 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1960 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1980 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1981 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Espace U1910
Espace U1911
Espace U1930
Espace U1960
Espace U1980
Espace U1981