Heap overflow

2018-01-3017:29:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.4%

JSON

Multiple heap-based buffer overflows in the eSap software platform in Huawei Campus S9300, S7700, S9700, S5300, S5700, S6300, and S6700 series switches; AR150, AR160, AR200, AR1200, AR2200, AR3200, AR530, NetEngine16EX, SRG1300, SRG2300, and SRG3300 series routers; and WLAN AC6005, AC6605, and ACU2 access controllers allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.

CPENameOperatorVersion
ar1200_firmwareeq200r3c0spc100-v
ar1200_firmwareeq200r3c0spc200-v
ar1200_firmwareeq200r3c1spc100-v
ar1200_firmwareeq200r3c1spc300-v
ar1200_firmwareeq200r3c1spc900-v
ar1200_firmwareeq200r5c0spc100-v
ar1200_firmwareeq200r5c0spc200-v
ar150_firmwareeq200r3c0spc100-v
ar150_firmwareeq200r3c0spc200-v
ar150_firmwareeq200r3c1spc100-v

Name	Operator	Version
ar1200_firmware	eq	200r3c0spc100-v
ar1200_firmware	eq	200r3c0spc200-v
ar1200_firmware	eq	200r3c1spc100-v
ar1200_firmware	eq	200r3c1spc300-v
ar1200_firmware	eq	200r3c1spc900-v
ar1200_firmware	eq	200r5c0spc100-v
ar1200_firmware	eq	200r5c0spc200-v
ar150_firmware	eq	200r3c0spc100-v
ar150_firmware	eq	200r3c0spc200-v
ar150_firmware	eq	200r3c1spc100-v