Security Advisory - TCP Connection Hijack Vulnerability

2016-09-0700:00:00

Huawei Technologies

www.huawei.com

4.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

0.004 Low

EPSS

Percentile

74.7%

JSON

There is a vulnerability in the implementation of the RFC 5961, due to the improper determination of the rate of challenge ACK responses by the global rate limit feature. Successful exploit could allow an unauthenticated, remote attacker to reset or hijack into a TCP connections between two systems, resulting in a DoS condition. (Vulnerability ID: HWPSIRT-2016-08060)

This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-5696.

Huawei has released software updates to fix these vulnerabilities. This advisory is available at the following link:

<http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160907-01-tcp-en>

CPENameOperatorVersion
hi3521aeqV100R001C01SPC020
hi3531aeqV100R001C01SPC010
hi3536eqV100R001C01SPC010
hi3536eqV100R001C01SPC030
hidptandroideqV200R001C01
hidptandroideqV300R001C00
huawei solutions for sap hanaltV100R001C01SPC103
oceanstor 18500 v3eqV300R003C10SPC100
oceanstor 18800 v3eqV300R003C10SPC100
oceanstor 2800 v3eqV300R001C00SPH201

Name	Operator	Version
hi3521a	eq	V100R001C01SPC020
hi3531a	eq	V100R001C01SPC010
hi3536	eq	V100R001C01SPC010
hi3536	eq	V100R001C01SPC030
hidptandroid	eq	V200R001C01
hidptandroid	eq	V300R001C00
huawei solutions for sap hana	lt	V100R001C01SPC103
oceanstor 18500 v3	eq	V300R003C10SPC100
oceanstor 18800 v3	eq	V300R003C10SPC100
oceanstor 2800 v3	eq	V300R001C00SPH201