CVE-2016-8790

Name of the Vulnerable Software and Affected Versions Huawei CloudEngine 5800 versions prior to V200R001C00SPC700 Huawei CloudEngine 6800 versions prior to V200R001C00SPC700 Huawei CloudEngine 7800 versions prior to V200R001C00SPC700 Huawei CloudEngine 8800 versions prior to V200R001C00SPC700 Huawei CloudEngine 12800 versions prior to V200R001C00SPC700

Description The issue is related to a buffer overflow vulnerability in the Connectivity Fault Management (CFM) function of some Huawei products. When CFM is enabled and Maintenance Association End Point (MEP) is configured on the affected device, an adjacent attacker could exploit this vulnerability by sending crafted packets to the affected system, potentially causing the main control board of the affected device to reboot.

Recommendations For Huawei CloudEngine 5800 versions prior to V200R001C00SPC700, update to V200R001C00SPC700 or later. For Huawei CloudEngine 6800 versions prior to V200R001C00SPC700, update to V200R001C00SPC700 or later. For Huawei CloudEngine 7800 versions prior to V200R001C00SPC700, update to V200R001C00SPC700 or later. For Huawei CloudEngine 8800 versions prior to V200R001C00SPC700, update to V200R001C00SPC700 or later. For Huawei CloudEngine 12800 versions prior to V200R001C00SPC700, update to V200R001C00SPC700 or later. As a temporary workaround, consider disabling the CFM function until a patch is available.