CVE-2016-8781

Name of the Vulnerable Software and Affected Versions Huawei Secospace USG6300 versions V500R001C20 through V500R001C20SPC200PWE Huawei Secospace USG6500 version V500R001C20 Huawei Secospace USG6600 versions V500R001C20 through V500R001C20SPC200PWE

Description A denial of service (DoS) issue exists due to the lack of memory release after executing a specific command. Remote attackers with specific permission can log in to a device and deliver a large number of such commands to exhaust memory, causing a DoS condition.

Recommendations For Huawei Secospace USG6300 versions V500R001C20 through V500R001C20SPC200PWE, restrict access to the device to prevent remote attackers from delivering a large number of commands. For Huawei Secospace USG6500 version V500R001C20, limit the number of commands that can be executed by a user with specific permission to prevent memory exhaustion. For Huawei Secospace USG6600 versions V500R001C20 through V500R001C20SPC200PWE, consider implementing a mechanism to release memory after command execution to prevent DoS conditions.