PT-2018-6486 · Huawei · Usg5150Bsr+4
Adam Czubak
+4
·
Published
2018-08-13
·
Updated
2018-10-12
·
CVE-2017-17311
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Huawei Firewall products USG2205BSR version V300R001C10SPC600
Huawei Firewall products USG2220BSR version V300R001C00
Huawei Firewall products USG5120BSR version V300R001C00
Huawei Firewall products USG5150BSR version V300R001C00
Description:
The issue is related to the IPSEC IKEv1 implementations of Huawei Firewall products, where improper handling of malformed messages can be exploited. An attacker may send crafted packets to the affected device, potentially leading to a denial of service.
Recommendations:
For USG2205BSR version V300R001C10SPC600, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations.
For USG2220BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations.
For USG5120BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations.
For USG5150BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations.
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei Vrp
Usg2205Bsr
Usg2220Bsr
Usg5120Bsr
Usg5150Bsr