PT-2015-7721 · Huawei · Espace U1960+5
Published
2015-11-19
·
Updated
2015-11-20
·
CVE-2015-8083
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Huawei eSpace U1910 versions prior to V200R003C00SPC300
Huawei eSpace U1911 versions prior to V200R003C00SPC300
Huawei eSpace U1930 versions prior to V200R003C00SPC300
Huawei eSpace U1960 versions prior to V200R003C00SPC300
Huawei eSpace U1980 versions prior to V200R003C00SPC300
Huawei eSpace U1981 versions prior to V200R003C00SPC300
Description
The issue is related to improper memory initialization when processing timeout messages in an unspecified module. This can be exploited by remote attackers to cause a denial of service, resulting in out-of-bounds memory access and device restart.
Recommendations
For Huawei eSpace U1910 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1911 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1930 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1960 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1980 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
For Huawei eSpace U1981 versions prior to V200R003C00SPC300, update to V200R003C00SPC300 or later.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Espace U1910
Espace U1911
Espace U1930
Espace U1960
Espace U1980
Espace U1981