Security Advisory - DoS Vulnerability in Some Huawei Firewall Products

2016-11-16T00:00:00
ID HUAWEI-SA-20161116-01-FIREWALL
Type huawei
Reporter Huawei Technologies
Modified 2016-11-16T00:00:00

Description

Some Huawei firewall products have a denial of service (DoS) vulnerability. Due to improper validation of some specific fields of DHCP message, an unauthenticated attacker may send abnormal DHCP request packets to the affected products. Successful exploit of this vulnerability could lead to a DoS condition. (Vulnerability ID: HWPSIRT-2016-08064) This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-8796. Huawei has released software updates to fix these vulnerabilities. This advisory is available at the following link: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-firewall-en