PT-2015-7639 · Huawei · Espace U1910+5
Published
2015-11-19
·
Updated
2015-11-20
·
CVE-2015-7845
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Huawei eSpace U1910 versions prior to V100R001C20SPH605
Huawei eSpace U1911 versions prior to V100R001C20SPH605
Huawei eSpace U1930 versions prior to V100R001C20SPH605
Huawei eSpace U1960 versions prior to V100R001C20SPH605
Huawei eSpace U1980 versions prior to V100R001C20SPH605
Huawei eSpace U1981 versions prior to V100R001C20SPH605
Description
The issue is related to the exception handling mechanism in the CLI Module, allowing remote attackers to cause a denial of service via crafted SSH packets. This results in a CLI outage.
Recommendations
For Huawei eSpace U1910 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
For Huawei eSpace U1911 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
For Huawei eSpace U1930 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
For Huawei eSpace U1960 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
For Huawei eSpace U1980 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
For Huawei eSpace U1981 versions prior to V100R001C20SPH605, update to V100R001C20SPH605 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Espace U1910
Espace U1911
Espace U1930
Espace U1960
Espace U1980
Espace U1981