CVE-2017-5544

Name of the Vulnerable Software and Affected Versions FiberHome Fengine S5800 switches version V210R240

Description An issue allows an unauthorized attacker to access the device's SSH service using a password cracking tool, leading to a denial of service. The repeated login attempts will occupy connection slots for a longer time, causing legitimate login attempts via SSH/telnet to be refused. This issue can be triggered by exploiting the SSH login, resulting in a denial of service that requires a device restart.

Recommendations For FiberHome Fengine S5800 switches version V210R240, consider restricting access to the SSH service as a temporary workaround until a patch is available. Additionally, monitor SSH login attempts and implement measures to prevent brute-force attacks, such as limiting the number of concurrent connections or implementing rate limiting on SSH login attempts.