CVE-2015-8676

Name of the Vulnerable Software and Affected Versions Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R001C00 through V200R001SPH017 Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R002C00 through V200R002SPH010 Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R003C00 through V200R003SPH010 Huawei S9300, S7700, and S9700 Campus series switches versions V200R001C00 through V200R001SPH022 Huawei S9300, S7700, and S9700 Campus series switches versions V200R002C00 through V200R002SPH010 Huawei S9300, S7700, and S9700 Campus series switches versions V200R003C00 through V200R003SPH010 Huawei S2300 and S3300 Campus series switches versions V100R006C05 through V100R006SPH021

Description The issue allows remote attackers to cause a denial of service (memory consumption and reboot) via a large number of ICMPv6 packets. This occurs because multiple Huawei switches improperly release memory for ICMPv6 packets of a specific type, leading to a memory leak after the switch receives a specially crafted ICMPv6 packet.

Recommendations For Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R001C00 through V200R001SPH017, update to V200R001SPH018 or later. For Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R002C00 through V200R002SPH010, update to V200R003SPH011 or later. For Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches versions V200R003C00 through V200R003SPH010, update to a version later than V200R003SPH011. For Huawei S9300, S7700, and S9700 Campus series switches versions V200R001C00 through V200R001SPH022, update to V200R001SPH023 or later. For Huawei S9300, S7700, and S9700 Campus series switches versions V200R002C00 through V200R002SPH010, update to V200R003SPH011 or later. For Huawei S9300, S7700, and S9700 Campus series switches versions V200R003C00 through V200R003SPH010, update to a version later than V200R003SPH011. For Huawei S2300 and S3300 Campus series switches versions V100R006C05 through V100R006SPH021, update to V100R006SPH022 or later.