HomePentest-Tools.com Logo

Huawei Data Communication: DoS Vulnerability in Huawei Firewall (huawei-sa-20161214-01-firewall) CVE-2016-8781

Severity
CVSSv3 Score
6.5
Vulnerability description

There is a denial of service (DoS) vulnerability in Huawei firewalls due to no memory release after the execution of a specific command.

Risk description

There is a denial of service (DoS) vulnerability in Huawei firewalls due to no memory release after the execution of a specific command. A remote attacker with specific permission can log in to a device and deliver a large number of such commands to exhaust memory, causing a DoS condition. (Vulnerability ID: HWPSIRT-2016-06075)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-8781.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references. Successful exploit could exhaust system memory, causing a DoS condition.

Recommendation

See the referenced vendor advisory for a solution.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 2, 2017
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available