CVE-2017-17165

Name of the Vulnerable Software and Affected Versions Huawei Quidway S2300 versions V200R003C00 through V200R009C00 Huawei Quidway S2700 versions V200R003C00SPC300 through V200R009C00 Huawei Quidway S5300 versions V200R003C00SPC300 through V200R009C00 Huawei Quidway S5700 versions V200R003C00SPC316T through V200R009C00 Huawei Quidway S600-E versions V200R008C00 through V200R009C00 Huawei Quidway S6300 versions V200R003C00 through V200R009C00 Huawei Quidway S6700 versions V200R003C00 through V200R009C00

Description The IPv6 function has an out-of-bounds read issue. An unauthenticated attacker can send crafted malformed IPv6 packets to the affected products. Due to insufficient verification of the packets, a successful exploit will cause the device to reset.

Recommendations For Huawei Quidway S2300 versions V200R003C00 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S2700 versions V200R003C00SPC300 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S5300 versions V200R003C00SPC300 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S5700 versions V200R003C00SPC316T through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S600-E versions V200R008C00 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S6300 versions V200R003C00 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function. For Huawei Quidway S6700 versions V200R003C00 through V200R009C00, update to a version that fixes the out-of-bounds read vulnerability in the IPv6 function.