CVE-2017-17142

Name of the Vulnerable Software and Affected Versions: Huawei DP300 versions V500R002C00 through V500R002C00SPCa00 Huawei RP200 version V500R002C00SPC200 Huawei RSE6500 versions V500R002C00SPC100 through V500R002C00SPC700 Huawei TE30 versions V100R001C10 through V100R001C10SPC800 Huawei TE30 versions V500R002C00SPC200 through V500R002C00SPCb00 Huawei TE40 versions V500R002C00SPC600 through V500R002C00SPCb00 Huawei TE50 versions V500R002C00SPC600 through V500R002C00SPCb00 Huawei TE60 versions V100R001C01SPC100 through V100R001C10SPC900 Huawei TE60 versions V500R002C00 through V500R002C00SPCb00 Huawei TP3106 versions V100R002C00 through V100R002C00SPC800 Huawei TP3206 versions V100R002C00 through V100R002C00SPC800 Huawei TP3206 version V100R002C00SPC700 Huawei ViewPoint 9030 versions V100R011C02SPC100 through V100R011C03SPC500 Huawei eSpace U1960 version V200R003C30SPC200 Huawei eSpace U1981 versions V100R001C20SPC700 through V200R003C20SPCa00

Description: The issue is related to an overflow vulnerability in the SIP module. An attacker can exploit this by sending a specially crafted SIP message, which can lead to a process reboot at random.

Recommendations: For Huawei DP300 versions V500R002C00 through V500R002C00SPCa00, update to a version that contains a fix for this issue. For Huawei RP200 version V500R002C00SPC200, update to a version that contains a fix for this issue. For Huawei RSE6500 versions V500R002C00SPC100 through V500R002C00SPC700, update to a version that contains a fix for this issue. For Huawei TE30 versions V100R001C10 through V100R001C10SPC800, update to a version that contains a fix for this issue. For Huawei TE30 versions V500R002C00SPC200 through V500R002C00SPCb00, update to a version that contains a fix for this issue. For Huawei TE40 versions V500R002C00SPC600 through V500R002C00SPCb00, update to a version that contains a fix for this issue. For Huawei TE50 versions V500R002C00SPC600 through V500R002C00SPCb00, update to a version that contains a fix for this issue. For Huawei TE60 versions V100R001C01SPC100 through V100R001C10SPC900, update to a version that contains a fix for this issue. For Huawei TE60 versions V500R002C00 through V500R002C00SPCb00, update to a version that contains a fix for this issue. For Huawei TP3106 versions V100R002C00 through V100R002C00SPC800, update to a version that contains a fix for this issue. For Huawei TP3206 versions V100R002C00 through V100R002C00SPC800, update to a version that contains a fix for this issue. For Huawei ViewPoint 9030 versions V100R011C02SPC100 through V100R011C03SPC500, update to a version that contains a fix for this issue. For Huawei eSpace U1960 version V200R003C30SPC200, update to a version that contains a fix for this issue. For Huawei eSpace U1981 versions V100R001C20SPC700 through V200R003C20SPCa00, update to a version that contains a fix for this issue. As a temporary workaround, consider disabling the SIP module until a patch is available.