Buffer overflow

2018-03-0921:29:00

PRIOn knowledge base

www.prio-n.com

4.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

SCCP (Signalling Connection Control Part) module in Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 has a buffer overflow vulnerability. An attacker has to find a way to send malformed packets to the affected products repeatedly. Due to insufficient input validation, successful exploit may cause some service abnormal.

CPENameOperatorVersion
dp300_firmwareeq500r2c0-v
rp200_firmwareeq500r2c0-v
rp200_firmwareeq600r6c0-v
te30_firmwareeq100r1c10-v
te30_firmwareeq500r2c0-v
te30_firmwareeq600r6c0-v
te40_firmwareeq500r2c0-v
te40_firmwareeq600r6c0-v
te50_firmwareeq500r2c0-v
te50_firmwareeq600r6c0-v

Name	Operator	Version
dp300_firmware	eq	500r2c0-v
rp200_firmware	eq	500r2c0-v
rp200_firmware	eq	600r6c0-v
te30_firmware	eq	100r1c10-v
te30_firmware	eq	500r2c0-v
te30_firmware	eq	600r6c0-v
te40_firmware	eq	500r2c0-v
te40_firmware	eq	600r6c0-v
te50_firmware	eq	500r2c0-v
te50_firmware	eq	600r6c0-v