CVE-2017-15342
published 2018-02-15CVE-2017-15342: Huawei DP300 V500R002C00, TE60 V600R006C00, TP3106 V100R002C00, eSpace U1981 V200R003C30SPC100 have a denial of service vulnerability. The software does not…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Huawei DP300 V500R002C00, TE60 V600R006C00, TP3106 V100R002C00, eSpace U1981 V200R003C30SPC100 have a denial of service vulnerability. The software does not correctly calculate the rest size in a buffer when handling SSL connections. A remote unauthenticated attacker could send a lot of crafted SSL messages to the device, successful exploit could cause no space in the buffer and then denial of service.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | dp300_firmware | — | — |
| huawei | espace_u1981_firmware | — | — |
| huawei | te60_firmware | — | — |
| huawei | tp3106_firmware | — | — |