CVE-2017-17144

Backup feature of SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability when the module process a specific amount of state. The module cannot handle it causing SIP module DoS.

Published: Mar 5, 2018
Updated: Apr 13, 2023
CVE: CVE-2017-17144
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
huawei / dp300_firmware	500r002c00	500r002c00.x
huawei / dp300_firmware	500r002c00spc100	500r002c00spc100.x
huawei / dp300_firmware	500r002c00spc200	500r002c00spc200.x
huawei / dp300_firmware	500r002c00spc300	500r002c00spc300.x
huawei / dp300_firmware	500r002c00spc400	500r002c00spc400.x
huawei / dp300_firmware	500r002c00spc500	500r002c00spc500.x
huawei / dp300_firmware	500r002c00spc600	500r002c00spc600.x
huawei / dp300_firmware	500r002c00spc800	500r002c00spc800.x
huawei / dp300_firmware	500r002c00spc900	500r002c00spc900.x
huawei / dp300_firmware	500r002c00spca00	500r002c00spca00.x
huawei / rp200_firmware	500r002c00spc200	500r002c00spc200.x
huawei / rp200_firmware	600r006c00	600r006c00.x
huawei / rp200_firmware	600r006c00spc200	600r006c00spc200.x
huawei / rse6500_firmware	500r002c00spc100	500r002c00spc100.x
huawei / rse6500_firmware	500r002c00spc200	500r002c00spc200.x
huawei / rse6500_firmware	500r002c00spc300	500r002c00spc300.x
huawei / rse6500_firmware	500r002c00spc300t	500r002c00spc300t.x
huawei / rse6500_firmware	500r002c00spc500	500r002c00spc500.x
huawei / rse6500_firmware	500r002c00spc600	500r002c00spc600.x
huawei / rse6500_firmware	500r002c00spc700	500r002c00spc700.x
huawei / rse6500_firmware	500r002c00t	500r002c00t.x
huawei / te30_firmware	100r001c10	100r001c10.x
huawei / te30_firmware	100r001c10spc100	100r001c10spc100.x
huawei / te30_firmware	100r001c10spc200b010	100r001c10spc200b010.x
huawei / te30_firmware	100r001c10spc300	100r001c10spc300.x
huawei / te30_firmware	100r001c10spc500	100r001c10spc500.x
huawei / te30_firmware	100r001c10spc600	100r001c10spc600.x
huawei / te30_firmware	100r001c10spc700b010	100r001c10spc700b010.x
huawei / te30_firmware	100r001c10spc800	100r001c10spc800.x
huawei / te30_firmware	500r002c00spc200	500r002c00spc200.x
huawei / te30_firmware	500r002c00spc500	500r002c00spc500.x
huawei / te30_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te30_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te30_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te30_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te30_firmware	600r006c00	600r006c00.x
huawei / te40_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te40_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te40_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te40_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te40_firmware	600r006c00	600r006c00.x
huawei / te40_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te50_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te50_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te50_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te50_firmware	600r006c00	600r006c00.x
huawei / te50_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te60_firmware	100r001c01spc100	100r001c01spc100.x
huawei / te60_firmware	100r001c01spc107tb010	100r001c01spc107tb010.x
huawei / te60_firmware	100r001c10	100r001c10.x
huawei / te60_firmware	100r001c10spc300	100r001c10spc300.x
huawei / te60_firmware	100r001c10spc400	100r001c10spc400.x
huawei / te60_firmware	100r001c10spc500	100r001c10spc500.x
huawei / te60_firmware	100r001c10spc600	100r001c10spc600.x
huawei / te60_firmware	100r001c10spc700	100r001c10spc700.x
huawei / te60_firmware	100r001c10spc800	100r001c10spc800.x
huawei / te60_firmware	100r001c10spc900	100r001c10spc900.x
huawei / te60_firmware	500r002c00	500r002c00.x
huawei / te60_firmware	500r002c00spc100	500r002c00spc100.x
huawei / te60_firmware	500r002c00spc200	500r002c00spc200.x
huawei / te60_firmware	500r002c00spc300	500r002c00spc300.x
huawei / te60_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te60_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te60_firmware	500r002c00spc800	500r002c00spc800.x
huawei / te60_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te60_firmware	500r002c00spca00	500r002c00spca00.x
huawei / te60_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te60_firmware	500r002c00spcd00	500r002c00spcd00.x
huawei / te60_firmware	600r006c00	600r006c00.x
huawei / te60_firmware	600r006c00spc100	600r006c00spc100.x
huawei / te60_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te60_firmware	600r006c00spc300	600r006c00spc300.x
huawei / tp3106_firmware	100r002c00	100r002c00.x
huawei / tp3106_firmware	100r002c00spc200	100r002c00spc200.x
huawei / tp3106_firmware	100r002c00spc400	100r002c00spc400.x
huawei / tp3106_firmware	100r002c00spc600	100r002c00spc600.x
huawei / tp3106_firmware	100r002c00spc700	100r002c00spc700.x
huawei / tp3106_firmware	100r002c00spc800	100r002c00spc800.x
huawei / tp3206_firmware	100r002c00	100r002c00.x
huawei / tp3206_firmware	100r002c00spc200	100r002c00spc200.x
huawei / tp3206_firmware	100r002c00spc400	100r002c00spc400.x
huawei / tp3206_firmware	100r002c00spc600	100r002c00spc600.x
huawei / tp3206_firmware	100r002c00spc700	100r002c00spc700.x
huawei / tp3206_firmware	100r002c10	100r002c10.x
huawei / viewpoint_9030_firmware	100r011c02spc100	100r011c02spc100.x
huawei / viewpoint_9030_firmware	100r011c03b012sp15	100r011c03b012sp15.x
huawei / viewpoint_9030_firmware	100r011c03b012sp16	100r011c03b012sp16.x
huawei / viewpoint_9030_firmware	100r011c03b015sp03	100r011c03b015sp03.x
huawei / viewpoint_9030_firmware	100r011c03lgwl01spc100	100r011c03lgwl01spc100.x
huawei / viewpoint_9030_firmware	100r011c03spc100	100r011c03spc100.x
huawei / viewpoint_9030_firmware	100r011c03spc200	100r011c03spc200.x
huawei / viewpoint_9030_firmware	100r011c03spc300	100r011c03spc300.x
huawei / viewpoint_9030_firmware	100r011c03spc400	100r011c03spc400.x
huawei / viewpoint_9030_firmware	100r011c03spc500	100r011c03spc500.x
huawei / espace_u1960_firmware	200r003c30spc200	200r003c30spc200.x
huawei / espace_u1981_firmware	100r001c20spc700	100r001c20spc700.x
huawei / espace_u1981_firmware	200r003c20spca00	200r003c20spca00.x

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-sip-en

Vulnerability Database

289,599

CVE-2017-17144