CVE-2016-5435

Name of the Vulnerable Software and Affected Versions Huawei IPS Module versions prior to V500R001C20SPC100 Huawei NGFW Module versions prior to V500R001C20SPC100 Huawei NIP6300 versions prior to V500R001C20SPC100 Huawei NIP6600 versions prior to V500R001C20SPC100 Huawei Secospace USG6300 versions prior to V500R001C20SPC100 Huawei Secospace USG6500 versions prior to V500R001C20SPC100 Huawei Secospace USG6600 versions prior to V500R001C20SPC100 Huawei Secospace USG9500 versions prior to V500R001C20SPC100 Huawei AntiDDoS8000 V500R001C00 versions prior to V500R001C20SPC100

Description A memory leak issue exists when two devices are not directly connected in hot standby networking, allowing remote attackers to cause a denial of service via a crafted packet, resulting in memory consumption and reboot.

Recommendations For Huawei IPS Module versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NGFW Module versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NIP6300 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei NIP6600 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei Secospace USG6300 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei Secospace USG6500 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei Secospace USG6600 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei Secospace USG9500 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later. For Huawei AntiDDoS8000 V500R001C00 versions prior to V500R001C20SPC100, update to V500R001C20SPC100 or later.