Details of VAR-201803-1334

ID

VAR-201803-1334

CVE

CVE-2017-17143

TITLE

plural Huawei Buffer error vulnerability in product

Trust: 0.8

sources: JVNDB: JVNDB-2017-012856

DESCRIPTION

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability that the module cannot parse a malformed SIP message when validating variables. Attacker can exploit it to make one process reboot at random. plural Huawei The product contains a buffer error vulnerability.Denial of service (DoS) May be in a state. Huawei DP300, RP200, RSE6500, and TE30/40/50/60 are all products of China Huawei. This vulnerability is caused by the device not fully verifying some values in the SIP packet. An unauthenticated remote attacker sends a specially constructed message to the affected device, causing some processes to restart probabilistically, affecting availability. DP300 is a video conferencing terminal. eSpace U1981 is a voice gateway product. The following products and versions are affected: Huawei DP300 V500R002C00 Version, V500R002C00SPC100 Version, V500R002C00SPC200 Version, V500R002C00SPC300 Version, V500R002C00SPC400 Version, V500R002C00SPC500 Version, V500R002C00SPC600 Version, V500R002C00SPC800 Version, V500R002C00SPC900 Version, V500R002C00SPCa00 Version; RP200 V500R002C00SPC200 Version, V600R006C00 Version, V600R006C00SPC200 Version; RSE6500 Version V500R002C00SPC100, Version V500R002C00SPC200, Version V500R002C00SPC300, Version V500R002C00SPC300T, Version V500R002C00SPC500, Version V500R002C00SPC600, Version V500R002C00SPC700T;

Trust: 2.25

sources: NVD: CVE-2017-17143 // JVNDB: JVNDB-2017-012856 // CNVD: CNVD-2017-38455 // VULHUB: VHN-108136

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-38455

AFFECTED PRODUCTS

vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc200	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03lgwl01spc100	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc400	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc100	Trust: 1.6
vendor:	huawei	model:	espace u1960	scope:	eq	version:	v200r003c30spc200	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b015sp03	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc500	Trust: 1.6
vendor:	huawei	model:	espace u1981	scope:	eq	version:	v200r003c20spca00	Trust: 1.6
vendor:	huawei	model:	espace u1981	scope:	eq	version:	v100r001c20spc700	Trust: 1.6
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03spc300	Trust: 1.6
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc300	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc600	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc700b010	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc800	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc400	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spca00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc300	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b012sp15	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc400	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spcd00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c01spc107tb010	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc800	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00t	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc100	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc200	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c03b012sp16	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc400	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc400	Trust: 1.0
vendor:	huawei	model:	viewpoint 9030	scope:	eq	version:	v100r011c02spc100	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	rp200	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc700	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc800	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc300t	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c01spc100	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc900	Trust: 1.0
vendor:	huawei	model:	tp3106	scope:	eq	version:	v100r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc500	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc800	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spca00	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v500r002c00spcb00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00	Trust: 1.0
vendor:	huawei	model:	te50	scope:	eq	version:	v600r006c00spc200	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c10	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc600	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v500r002c00spc500	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc300	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc500	Trust: 1.0
vendor:	huawei	model:	te60	scope:	eq	version:	v100r001c10spc800	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc200	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc300	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00spc600	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc100	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	eq	version:	v500r002c00spc900	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc600	Trust: 1.0
vendor:	huawei	model:	te40	scope:	eq	version:	v600r006c00	Trust: 1.0
vendor:	huawei	model:	te30	scope:	eq	version:	v100r001c10spc200b010	Trust: 1.0
vendor:	huawei	model:	rse6500	scope:	eq	version:	v500r002c00spc700	Trust: 1.0
vendor:	huawei	model:	tp3206	scope:	eq	version:	v100r002c00	Trust: 1.0
vendor:	huawei	model:	dp300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	espace u1960	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	espace u1981	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	rp200	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	rse6500	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te30	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te40	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te50	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	te60	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	tp3106	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	tp3206	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	viewpoint 9030	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	dp300 v500r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v600r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc50	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	dp300 v500r002c00spca00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te40 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te50 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v600r006c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spc900	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spca00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spcb00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v500r002c00spcd00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rp200 v600r006c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc300t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc500	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	rse6500 v500r002c00t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc200b010	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te30 v100r001c10spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c01spc100	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c01spc107tb010	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc300	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	te60 v100r001c10spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3106 v100r002c00spc800	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc400	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc600	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	tp3206 v100r002c00spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c02spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b012sp15	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b012sp16	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03b015sp03	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03lgwl01spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc100	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc200	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc300	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc400	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	viewpoint v100r011c03spc500	scope:	eq	version:	9030	Trust: 0.6
vendor:	huawei	model:	espace u1960 v200r003c30spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	espace u1981 v100r001c20spc700	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	espace u1981 v200r003c20spca00	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2017-38455 // JVNDB: JVNDB-2017-012856 // CNNVD: CNNVD-201712-300 // NVD: CVE-2017-17143

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-17143
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-17143
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-38455
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201712-300
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-108136
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-17143
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-38455
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-108136
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-17143
baseSeverity:	MEDIUM
baseScore:	5.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-38455 // VULHUB: VHN-108136 // JVNDB: JVNDB-2017-012856 // CNNVD: CNNVD-201712-300 // NVD: CVE-2017-17143

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-108136 // JVNDB: JVNDB-2017-012856 // NVD: CVE-2017-17143

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201712-300

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201712-300

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-012856

PATCH

title:	huawei-sa-20171206-01-sip	url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-sip-en	Trust: 0.8
title:	Patch for multiple Huawei product SIP module buffer overflow vulnerability (CNVD-2017-38455)	url:	https://www.cnvd.org.cn/patchInfo/show/112103	Trust: 0.6

sources: CNVD: CNVD-2017-38455 // JVNDB: JVNDB-2017-012856

EXTERNAL IDS

db:	NVD	id:	CVE-2017-17143	Trust: 3.1
db:	JVNDB	id:	JVNDB-2017-012856	Trust: 0.8
db:	CNNVD	id:	CNNVD-201712-300	Trust: 0.7
db:	CNVD	id:	CNVD-2017-38455	Trust: 0.6
db:	VULHUB	id:	VHN-108136	Trust: 0.1

sources: CNVD: CNVD-2017-38455 // VULHUB: VHN-108136 // JVNDB: JVNDB-2017-012856 // CNNVD: CNNVD-201712-300 // NVD: CVE-2017-17143

REFERENCES

url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-sip-en	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-17143	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-17143	Trust: 0.8
url:	http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20171206-01-sip-cn	Trust: 0.6

sources: CNVD: CNVD-2017-38455 // VULHUB: VHN-108136 // JVNDB: JVNDB-2017-012856 // CNNVD: CNNVD-201712-300 // NVD: CVE-2017-17143

SOURCES

db:	CNVD	id:	CNVD-2017-38455
db:	VULHUB	id:	VHN-108136
db:	JVNDB	id:	JVNDB-2017-012856
db:	CNNVD	id:	CNNVD-201712-300
db:	NVD	id:	CVE-2017-17143

LAST UPDATE DATE

2024-11-23T22:12:38.649000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-38455	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-108136	date:	2018-03-27T00:00:00
db:	JVNDB	id:	JVNDB-2017-012856	date:	2018-04-24T00:00:00
db:	CNNVD	id:	CNNVD-201712-300	date:	2018-03-06T00:00:00
db:	NVD	id:	CVE-2017-17143	date:	2024-11-21T03:17:34.347

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-38455	date:	2017-12-28T00:00:00
db:	VULHUB	id:	VHN-108136	date:	2018-03-05T00:00:00
db:	JVNDB	id:	JVNDB-2017-012856	date:	2018-04-24T00:00:00
db:	CNNVD	id:	CNNVD-201712-300	date:	2017-12-07T00:00:00
db:	NVD	id:	CVE-2017-17143	date:	2018-03-05T19:29:00.863