Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could cause system reboot.
Advisories
Source ID Title
EUVD EUVD EUVD-2017-6800 Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could cause system reboot.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: huawei

Published:

Updated: 2024-08-05T19:50:16.686Z

Reserved: 2017-10-14T00:00:00

Link: CVE-2017-15344

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-02-15T16:29:00.953

Modified: 2024-11-21T03:14:30.543

Link: CVE-2017-15344

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.