CVE-2017-8147 Information
Description
AC6005 V200R006C10SPC200AC6605 V200R006C10SPC200AR1200 with software V200R005C10CP0582T V200R005C10HP0581T V200R005C20SPC026TAR200 with software V200R005C20SPC026TAR3200 V200R005C20SPC026TCloudEngine 12800 with software V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00CloudEngine 5800 with software V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00CloudEngine 6800 with software V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00CloudEngine 7800 with software V100R003C00 V100R005C00 V100R005C10 V100R006C00 V200R001C00CloudEngine 8800 with software V100R006C00 V200R001C00E600 V200R008C00S12700 with software V200R005C00 V200R006C00 V200R007C00 V200R008C00S1700 with software V100R006C00 V100R007C00 V200R006C00S2300 with software V100R005C00 V100R006C00 V100R006C03 V100R006C05 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R005C01 V200R005C02 V200R005C03 V200R006C00 V200R007C00 V200R008C00S2700 with software V100R005C00 V100R006C00 V100R006C03 V100R006C05 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R005C01 V200R005C02 V200R005C03 V200R006C00 V200R007C00 V200R008C00S5300 with software V100R005C00 V100R006C00 V100R006C01 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00S5700 with software V100R005C00 V100R006C00 V100R006C01 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00S6300 with software V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R008C00S6700 with software V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R003C02 V200R003C10 V200R005C00 V200R006C00 V200R007C00 V200R008C00S7700 with software V100R003C00 V100R006C00 V200R001C00 V200R001C01 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00S9300 with software V100R001C00 V100R002C00 V100R003C00 V100R006C00 V200R001C00 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00 V200R008C10S9700 with software V200R001C00 V200R002C00 V200R003C00 V200R005C00 V200R006C00 V200R007C00 V200R008C00Secospace USG6600 V500R001C00SPC050 have a MaxAge LSA vulnerability due to improper OSPF implementation. When the device receives special LSA packets the LS (Link Status) age would be set to MaxAge 3600 seconds. An attacker can exploit this vulnerability to poison the route table and launch a DoS attack.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Reference
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170720-01-ospf-en
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
7.5
Share on: