Vulnerability Name:

CVE-2016-8797 (CCN-124697)

Assigned:2016-11-16
Published:2016-11-16
Updated:2017-04-11
Summary:Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-399
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2016-8797

Source: CCN
Type: Huawei Security Advisory - huawei-sa-20160608-01-mpls
Security Advisory - Memory Leak Vulnerability in Some Huawei Products

Source: CONFIRM
Type: Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160608-01-mpls-en

Source: XF
Type: UNKNOWN
huawei-cve20168797-dos(124697)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:huawei:ar3200_firmware:v200r005c20:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:ar3200_firmware:v200r005c32:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:ar3200_firmware:v200r007c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:ar3200:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:huawei:s12700_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s12700_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s12700:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:huawei:s5300_firmware:v200r006c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s5300_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s5300_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s5300:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:huawei:s5700_firmware:v200r006c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s5700_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s5700:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:huawei:s6300_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s6300_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s6300:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:huawei:s6700_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s6700:-:*:*:*:*:*:*:*

    • Configuration 7:
  • cpe:/o:huawei:s7700_firmware:v200r006c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s7700_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s7700_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s7700:-:*:*:*:*:*:*:*

    • Configuration 8:
  • cpe:/o:huawei:s9300_firmware:v200r006c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s9300_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s9300_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s9300:-:*:*:*:*:*:*:*

    • Configuration 9:
  • cpe:/o:huawei:s9700_firmware:v200r006c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s9700_firmware:v200r007c00:*:*:*:*:*:*:*
  • OR cpe:/o:huawei:s9700_firmware:v200r008c00:*:*:*:*:*:*:*
  • AND
  • cpe:/h:huawei:s9700:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    huawei ar3200 firmware v200r005c20
    huawei ar3200 firmware v200r005c32
    huawei ar3200 firmware v200r007c00
    huawei ar3200 -
    huawei s12700 firmware v200r007c00
    huawei s12700 firmware v200r008c00
    huawei s12700 -
    huawei s5300 firmware v200r006c00
    huawei s5300 firmware v200r007c00
    huawei s5300 firmware v200r008c00
    huawei s5300 -
    huawei s5700 firmware v200r006c00
    huawei s5700 firmware v200r007c00
    huawei s5700 firmware v200r008c00
    huawei s5700 -
    huawei s6300 firmware v200r007c00
    huawei s6300 firmware v200r008c00
    huawei s6300 -
    huawei s6700 firmware v200r007c00
    huawei s6700 firmware v200r008c00
    huawei s6700 -
    huawei s7700 firmware v200r006c00
    huawei s7700 firmware v200r007c00
    huawei s7700 firmware v200r008c00
    huawei s7700 -
    huawei s9300 firmware v200r006c00
    huawei s9300 firmware v200r007c00
    huawei s9300 firmware v200r008c00
    huawei s9300 -
    huawei s9700 firmware v200r006c00
    huawei s9700 firmware v200r007c00
    huawei s9700 firmware v200r008c00
    huawei s9700 -