CVE-2015-2255

Name of the Vulnerable Software and Affected Versions Huawei AR1220 routers with software before V200R005SPH006

Description The issue allows remote attackers to cause a denial of service, resulting in a board reset. This occurs when a large amount of traffic is sent from the GE port to the FE port. Under specific configurations, an attacker can exploit this by sending massive traffic to the FE port from the GE port on the main board, causing the interface board to reset unexpectedly.

Recommendations For Huawei AR1220 routers with software before V200R005SPH006, update the software to version V200R005SPH006 or later to resolve the issue. As a temporary workaround, consider restricting traffic from the GE port to the FE port to minimize the risk of exploitation.