Details of VAR-201803-1333

ID

VAR-201803-1333

CVE

CVE-2017-17142

TITLE

plural Huawei Product buffer error vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-012855

DESCRIPTION

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability that attacker can exploit by sending a specially crafted SIP message leading to a process reboot at random. plural Huawei The product contains a buffer error vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Huawei DP300, RP200, RSE6500, and TE30/40/50/60 are all products of China Huawei. A buffer overflow vulnerability exists in the SIP module of several Huawei products. This vulnerability is caused by the device not fully verifying some values in the SIP packet. An unauthenticated remote attacker sends a specially constructed message to the affected device, causing some processes to restart probabilistically, affecting availability. DP300 is a video conferencing terminal. eSpace U1981 is a voice gateway product. The following products and versions are affected: Huawei DP300 V500R002C00 Version, V500R002C00SPC100 Version, V500R002C00SPC200 Version, V500R002C00SPC300 Version, V500R002C00SPC400 Version, V500R002C00SPC500 Version, V500R002C00SPC600 Version, V500R002C00SPC800 Version, V500R002C00SPC900 Version, V500R002C00SPCa00 Version; RP200 V500R002C00SPC200 Version, V600R006C00 Version, V600R006C00SPC200 Version; RSE6500 Version V500R002C00SPC100, Version V500R002C00SPC200, Version V500R002C00SPC300, Version V500R002C00SPC300T, Version V500R002C00SPC500, Version V500R002C00SPC600, Version V500R002C00SPC700T;

Trust: 2.25

sources: NVD: CVE-2017-17142 // JVNDB: JVNDB-2017-012855 // CNVD: CNVD-2017-38454 // VULHUB: VHN-108135

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-38454

AFFECTED PRODUCTS

vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc200	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03lgwl01spc100	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc400	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc100	Trust: 1.6
vendor:	huawei	model:	espace u1960	scope:	eq	version:	v200r003c30spc200	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b015sp03	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc500	Trust: 1.6
vendor:	huawei	model:	espace u1981	scope:	eq	version:	v200r003c20spca00	Trust: 1.6
vendor:	huawei	model:	espace u1981	scope:	eq	version:	v100r001c20spc700	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc300	Trust: 1.6
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc300	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc600	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc700b010	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc800	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc400	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spca00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc300	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b012sp15	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc400	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spcd00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c01spc107tb010	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc800	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00t	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc100	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc200	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b012sp16	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc400	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc400	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c02spc100	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc800	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc300t	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c01spc100	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc900	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc500	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc800	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spca00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c10	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc600	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc500	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc800	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc300	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc600	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc200b010	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	espace u1960	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	espace u1981	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	rp200	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	rse6500	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te30	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te40	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te50	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te60	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	tp3106	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	tp3206	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	viewpoint 9030	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	dp300 v500r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc50	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spca00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc700b010	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spca00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spcd00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc300t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc200b010	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c01spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c01spc107tb010	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c02spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b012sp15	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b012sp16	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b015sp03	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03lgwl01spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc200	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc300	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc400	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc500	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	espace u1960 v200r003c30spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	espace u1981 v100r001c20spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	espace u1981 v200r003c20spca00	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2017-38454 // JVNDB: JVNDB-2017-012855 // CNNVD: CNNVD-201712-301 // NVD: CVE-2017-17142

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-17142
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-17142
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-38454
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201712-301
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-108135
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-17142
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-38454
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-108135
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-17142
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-38454 // VULHUB: VHN-108135 // JVNDB: JVNDB-2017-012855 // CNNVD: CNNVD-201712-301 // NVD: CVE-2017-17142

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-108135 // JVNDB: JVNDB-2017-012855 // NVD: CVE-2017-17142

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201712-301

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201712-301

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-012855

PATCH

title:	huawei-sa-20171206-01-sip	url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-sip-en	Trust: 0.8
title:	Patches for multiple Huawei product SIP module buffer overflow vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/112101	Trust: 0.6

sources: CNVD: CNVD-2017-38454 // JVNDB: JVNDB-2017-012855

EXTERNAL IDS

db:	NVD	id:	CVE-2017-17142	Trust: 3.1
db:	JVNDB	id:	JVNDB-2017-012855	Trust: 0.8
db:	CNNVD	id:	CNNVD-201712-301	Trust: 0.7
db:	CNVD	id:	CNVD-2017-38454	Trust: 0.6
db:	VULHUB	id:	VHN-108135	Trust: 0.1

sources: CNVD: CNVD-2017-38454 // VULHUB: VHN-108135 // JVNDB: JVNDB-2017-012855 // CNNVD: CNNVD-201712-301 // NVD: CVE-2017-17142

REFERENCES

url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-sip-en	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-17142	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-17142	Trust: 0.8
url:	http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn	Trust: 0.6

sources: CNVD: CNVD-2017-38454 // VULHUB: VHN-108135 // JVNDB: JVNDB-2017-012855 // CNNVD: CNNVD-201712-301 // NVD: CVE-2017-17142

SOURCES

db:	CNVD	id:	CNVD-2017-38454
db:	VULHUB	id:	VHN-108135
db:	JVNDB	id:	JVNDB-2017-012855
db:	CNNVD	id:	CNNVD-201712-301
db:	NVD	id:	CVE-2017-17142

LAST UPDATE DATE

2024-11-23T22:34:19.408000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-38454	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-108135	date:	2018-03-27T00:00:00
db:	JVNDB	id:	JVNDB-2017-012855	date:	2018-04-24T00:00:00
db:	CNNVD	id:	CNNVD-201712-301	date:	2018-03-06T00:00:00
db:	NVD	id:	CVE-2017-17142	date:	2024-11-21T03:17:34.190

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-38454	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-108135	date:	2018-03-05T00:00:00
db:	JVNDB	id:	JVNDB-2017-012855	date:	2018-04-24T00:00:00
db:	CNNVD	id:	CNNVD-201712-301	date:	2017-12-07T00:00:00
db:	NVD	id:	CVE-2017-17142	date:	2018-03-05T19:29:00.800