CVE-2016-8802

Name of the Vulnerable Software and Affected Versions Huawei Secospace USG6300 versions V500R001C20SPC100 through V500R001C20SPC200 Huawei Secospace USG6500 versions V500R001C20SPC100 through V500R001C20SPC200 Huawei Secospace USG6600 versions V500R001C20SPC100 through V500R001C20SPC200

Description The security policy processing module in certain Huawei firewall products contains a buffer overflow vulnerability. An authenticated attacker can set up a specific security policy, causing a buffer overflow that crashes the system.

Recommendations For Huawei Secospace USG6300 versions V500R001C20SPC100 through V500R001C20SPC200, restrict access to the security policy processing module to prevent exploitation. For Huawei Secospace USG6500 versions V500R001C20SPC100 through V500R001C20SPC200, consider disabling the security policy setup feature until a fix is available. For Huawei Secospace USG6600 versions V500R001C20SPC100 through V500R001C20SPC200, apply configuration changes to limit the impact of a potential buffer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.