cnvd-2017-38456
Vulnerability from cnvd

Title: 多款Huawei产品SIP模块拒绝服务漏洞

Description:

Huawei DP300、RP200、RSE6500、TE30/40/50/60等都是中国华为(Huawei)公司的产品。

多款Huawei产品SIP模块存在拒绝服务漏洞,该漏洞是由于SIP备份模块未能正常处理超过某一数量的对端状态。未经身份验证的远程攻击者通过与受影响产品SIP模块短时间内建立多个连接,导致SIP模块出现拒绝服务。

Severity:

Patch Name: 多款Huawei产品SIP模块拒绝服务漏洞 的补丁

Patch Description:

Huawei DP300、RP200、RSE6500、TE30/40/50/60等都是中国华为(Huawei)公司的产品。

多款Huawei产品SIP模块存在拒绝服务漏洞,该漏洞是由于SIP备份模块未能正常处理超过某一数量的对端状态。未经身份验证的远程攻击者通过与受影响产品SIP模块短时间内建立多个连接,导致SIP模块出现拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞,补丁获取链接: http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn

Reference: http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn

Impacted products
Name
['Huawei eSpace U1981 V100R001C20SPC700', 'Huawei eSpace U1981 V200R003C20SPCa00', 'Huawei eSpace U1960 V200R003C30SPC200', 'Huawei ViewPoint 9030 V100R011C02SPC100', 'Huawei ViewPoint 9030 V100R011C03B012SP15', 'Huawei ViewPoint 9030 V100R011C03B012SP16', 'Huawei ViewPoint 9030 V100R011C03B015SP03', 'Huawei ViewPoint 9030 V100R011C03LGWL01SPC100', 'Huawei ViewPoint 9030 V100R011C03SPC100', 'Huawei ViewPoint 9030 V100R011C03SPC200', 'Huawei ViewPoint 9030 V100R011C03SPC300', 'Huawei ViewPoint 9030 V100R011C03SPC400', 'Huawei ViewPoint 9030 V100R011C03SPC500', 'Huawei DP300 V500R002C00', 'Huawei DP300 V500R002C00SPC100', 'Huawei DP300 V500R002C00SPC200', 'Huawei DP300 V500R002C00SPC300', 'Huawei DP300 V500R002C00SPC400', 'Huawei DP300 V500R002C00SPC50', 'Huawei DP300 V500R002C00SPC600', 'Huawei DP300 V500R002C00SPC800', 'Huawei DP300 V500R002C00SPC900', 'Huawei DP300 V500R002C00SPCa00', 'Huawei RP200 V600R006C00', 'Huawei RP200 V500R002C00SPC200', 'Huawei RP200 V600R006C00SPC200', 'Huawei RSE6500 V500R002C00', 'Huawei RSE6500 V500R002C00SPC100', 'Huawei RSE6500 V500R002C00SPC200', 'Huawei RSE6500 V500R002C00SPC300', 'Huawei RSE6500 V500R002C00SPC300T', 'Huawei RSE6500 V500R002C00SPC500', 'Huawei RSE6500 V500R002C00SPC600', 'Huawei RSE6500 V500R002C00SPC700', 'Huawei RSE6500 V500R002C00T', 'Huawei TE30 V100R001C10', 'Huawei TE30 V600R006C00', 'Huawei TE30 V100R001C10SPC300', 'Huawei TE30 V100R001C10SPC500', 'Huawei TE30 V100R001C10SPC600', 'Huawei TE30 V500R002C00SPC200', 'Huawei TE30 V500R002C00SPC500', 'Huawei TE30 V500R002C00SPC600', 'Huawei TE30 V500R002C00SPC700', 'Huawei TE30 V500R002C00SPC900', 'Huawei TE30 V500R002C00SPCb00', 'Huawei TE30 V100R001C10SPC700B010', 'Huawei TE30 V100R001C10SPC100', 'Huawei TE30 V100R001C10SPC200B010', 'Huawei TE30 V100R001C10SPC800', 'Huawei TE40 V600R006C00', 'Huawei TE40 V500R002C00SPC600', 'Huawei TE40 V500R002C00SPC700', 'Huawei TE40 V500R002C00SPC900', 'Huawei TE40 V500R002C00SPCb00', 'Huawei TE40 V600R006C00SPC200', 'Huawei TE50 V600R006C00', 'Huawei TE50 V500R002C00SPC600', 'Huawei TE50 V500R002C00SPC700', 'Huawei TE50 V500R002C00SPCb00', 'Huawei TE50 V600R006C00SPC200', 'Huawei TE60 V100R001C10', 'Huawei TE60 V500R002C00', 'Huawei TE60 V600R006C00', 'Huawei TE60 V600R006C00SPC200', 'Huawei TE60 V600R006C00SPC300', 'Huawei TE60 V600R006C00SPC100', 'Huawei TE60 V100R001C10SPC400', 'Huawei TE60 V100R001C10SPC500', 'Huawei TE60 V100R001C10SPC600', 'Huawei TE60 V100R001C10SPC700', 'Huawei TE60 V100R001C10SPC900', 'Huawei TE60 V500R002C00SPC100', 'Huawei TE60 V500R002C00SPC200', 'Huawei TE60 V500R002C00SPC300', 'Huawei TE60 V500R002C00SPC600', 'Huawei TE60 V500R002C00SPC700', 'Huawei TE60 V500R002C00SPC800', 'Huawei TE60 V500R002C00SPC900', 'Huawei TE60 V500R002C00SPCa00', 'Huawei TE60 V500R002C00SPCb00', 'Huawei TE60 V500R002C00SPCd00', 'Huawei TE60 V100R001C01SPC100', 'Huawei TE60 V100R001C01SPC107TB010', 'Huawei TE60 V100R001C10SPC300', 'Huawei TE60 V100R001C10SPC800', 'Huawei TP3106 V100R002C00', 'Huawei TP3106 V100R002C00SPC200', 'Huawei TP3106 V100R002C00SPC400', 'Huawei TP3106 V100R002C00SPC600', 'Huawei TP3106 V100R002C00SPC700', 'Huawei TP3106 V100R002C00SPC800', 'Huawei TP3206 V100R002C00', 'Huawei TP3206 V100R002C00SPC200', 'Huawei TP3206 V100R002C00SPC400', 'Huawei TP3206 V100R002C00SPC600', 'Huawei TP3206 V100R002C00SPC700']
Show details on source website

To clipboard 

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-17144"
    }
  },
  "description": "Huawei DP300\u3001RP200\u3001RSE6500\u3001TE30/40/50/60\u7b49\u90fd\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002\r\n\r\n\u591a\u6b3eHuawei\u4ea7\u54c1SIP\u6a21\u5757\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8eSIP\u5907\u4efd\u6a21\u5757\u672a\u80fd\u6b63\u5e38\u5904\u7406\u8d85\u8fc7\u67d0\u4e00\u6570\u91cf\u7684\u5bf9\u7aef\u72b6\u6001\u3002\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u4e0e\u53d7\u5f71\u54cd\u4ea7\u54c1SIP\u6a21\u5757\u77ed\u65f6\u95f4\u5185\u5efa\u7acb\u591a\u4e2a\u8fde\u63a5\uff0c\u5bfc\u81f4SIP\u6a21\u5757\u51fa\u73b0\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Huawei",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-38456",
  "openTime": "2017-12-28",
  "patchDescription": "Huawei DP300\u3001RP200\u3001RSE6500\u3001TE30/40/50/60\u7b49\u90fd\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002\r\n\r\n\u591a\u6b3eHuawei\u4ea7\u54c1SIP\u6a21\u5757\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8eSIP\u5907\u4efd\u6a21\u5757\u672a\u80fd\u6b63\u5e38\u5904\u7406\u8d85\u8fc7\u67d0\u4e00\u6570\u91cf\u7684\u5bf9\u7aef\u72b6\u6001\u3002\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u4e0e\u53d7\u5f71\u54cd\u4ea7\u54c1SIP\u6a21\u5757\u77ed\u65f6\u95f4\u5185\u5efa\u7acb\u591a\u4e2a\u8fde\u63a5\uff0c\u5bfc\u81f4SIP\u6a21\u5757\u51fa\u73b0\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eHuawei\u4ea7\u54c1SIP\u6a21\u5757\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e \u7684\u8865\u4e01",
  "products": {
    "product": [
      "Huawei eSpace U1981 V100R001C20SPC700",
      "Huawei eSpace U1981 V200R003C20SPCa00",
      "Huawei eSpace U1960 V200R003C30SPC200",
      "Huawei ViewPoint 9030 V100R011C02SPC100",
      "Huawei ViewPoint 9030 V100R011C03B012SP15",
      "Huawei ViewPoint 9030 V100R011C03B012SP16",
      "Huawei ViewPoint 9030 V100R011C03B015SP03",
      "Huawei ViewPoint 9030 V100R011C03LGWL01SPC100",
      "Huawei ViewPoint 9030 V100R011C03SPC100",
      "Huawei ViewPoint 9030 V100R011C03SPC200",
      "Huawei ViewPoint 9030 V100R011C03SPC300",
      "Huawei ViewPoint 9030 V100R011C03SPC400",
      "Huawei ViewPoint 9030 V100R011C03SPC500",
      "Huawei DP300 V500R002C00",
      "Huawei DP300 V500R002C00SPC100",
      "Huawei DP300 V500R002C00SPC200",
      "Huawei DP300 V500R002C00SPC300",
      "Huawei DP300 V500R002C00SPC400",
      "Huawei DP300 V500R002C00SPC50",
      "Huawei DP300 V500R002C00SPC600",
      "Huawei DP300 V500R002C00SPC800",
      "Huawei DP300 V500R002C00SPC900",
      "Huawei DP300 V500R002C00SPCa00",
      "Huawei RP200 V600R006C00",
      "Huawei RP200 V500R002C00SPC200",
      "Huawei RP200 V600R006C00SPC200",
      "Huawei RSE6500 V500R002C00",
      "Huawei RSE6500 V500R002C00SPC100",
      "Huawei RSE6500 V500R002C00SPC200",
      "Huawei RSE6500 V500R002C00SPC300",
      "Huawei RSE6500 V500R002C00SPC300T",
      "Huawei RSE6500 V500R002C00SPC500",
      "Huawei RSE6500 V500R002C00SPC600",
      "Huawei RSE6500 V500R002C00SPC700",
      "Huawei RSE6500 V500R002C00T",
      "Huawei TE30 V100R001C10",
      "Huawei TE30 V600R006C00",
      "Huawei TE30 V100R001C10SPC300",
      "Huawei TE30 V100R001C10SPC500",
      "Huawei TE30 V100R001C10SPC600",
      "Huawei TE30 V500R002C00SPC200",
      "Huawei TE30 V500R002C00SPC500",
      "Huawei TE30 V500R002C00SPC600",
      "Huawei TE30 V500R002C00SPC700",
      "Huawei TE30 V500R002C00SPC900",
      "Huawei TE30 V500R002C00SPCb00",
      "Huawei TE30 V100R001C10SPC700B010",
      "Huawei TE30 V100R001C10SPC100",
      "Huawei TE30 V100R001C10SPC200B010",
      "Huawei TE30 V100R001C10SPC800",
      "Huawei TE40 V600R006C00",
      "Huawei TE40 V500R002C00SPC600",
      "Huawei TE40 V500R002C00SPC700",
      "Huawei TE40 V500R002C00SPC900",
      "Huawei TE40 V500R002C00SPCb00",
      "Huawei TE40 V600R006C00SPC200",
      "Huawei TE50 V600R006C00",
      "Huawei TE50 V500R002C00SPC600",
      "Huawei TE50 V500R002C00SPC700",
      "Huawei TE50 V500R002C00SPCb00",
      "Huawei TE50 V600R006C00SPC200",
      "Huawei TE60 V100R001C10",
      "Huawei TE60 V500R002C00",
      "Huawei TE60 V600R006C00",
      "Huawei TE60 V600R006C00SPC200",
      "Huawei TE60 V600R006C00SPC300",
      "Huawei TE60 V600R006C00SPC100",
      "Huawei TE60 V100R001C10SPC400",
      "Huawei TE60 V100R001C10SPC500",
      "Huawei TE60 V100R001C10SPC600",
      "Huawei TE60 V100R001C10SPC700",
      "Huawei TE60 V100R001C10SPC900",
      "Huawei TE60 V500R002C00SPC100",
      "Huawei TE60 V500R002C00SPC200",
      "Huawei TE60 V500R002C00SPC300",
      "Huawei TE60 V500R002C00SPC600",
      "Huawei TE60 V500R002C00SPC700",
      "Huawei TE60 V500R002C00SPC800",
      "Huawei TE60 V500R002C00SPC900",
      "Huawei TE60 V500R002C00SPCa00",
      "Huawei TE60 V500R002C00SPCb00",
      "Huawei TE60 V500R002C00SPCd00",
      "Huawei TE60 V100R001C01SPC100",
      "Huawei TE60 V100R001C01SPC107TB010",
      "Huawei TE60 V100R001C10SPC300",
      "Huawei TE60 V100R001C10SPC800",
      "Huawei TP3106 V100R002C00",
      "Huawei TP3106 V100R002C00SPC200",
      "Huawei TP3106 V100R002C00SPC400",
      "Huawei TP3106 V100R002C00SPC600",
      "Huawei TP3106 V100R002C00SPC700",
      "Huawei TP3106 V100R002C00SPC800",
      "Huawei TP3206 V100R002C00",
      "Huawei TP3206 V100R002C00SPC200",
      "Huawei TP3206 V100R002C00SPC400",
      "Huawei TP3206 V100R002C00SPC600",
      "Huawei TP3206 V100R002C00SPC700"
    ]
  },
  "referenceLink": "http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn",
  "serverity": "\u4e2d",
  "submitTime": "2017-12-08",
  "title": "\u591a\u6b3eHuawei\u4ea7\u54c1SIP\u6a21\u5757\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.