Main Vulnerability Database SB2019121706

SB2019121706 - Multiple vulnerabilities in some Huawei Products

Published: December 17, 2019

Security Bulletin ID SB2019121706

Severity

Medium

Patch available

YES

Number of vulnerabilities 5

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.

1) Buffer overflow (CVE-ID: CVE-2019-5258)

The vulnerability allows a local attacker to cause the affected board abnormal.

The vulnerability exists due to a boundary error when processing a crafted message. A local attacker who logs in to the board can send specially crafted messages from the internal network port or tamper with inter-process message packets, trigger memory corruption and cause the affected board abnormal.

2) Resource management error (CVE-ID: CVE-2019-5257)

The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of system resources. A local attacker who logs in to the board can send specially crafted messages from the internal network port or tamper with inter-process message packets and cause a denial of service condition on the target system.

3) NULL pointer dereference (CVE-ID: CVE-2019-5256)

The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A local attacker can send specially crafted parameters, cause a denial of service condition and the process reboot.

4) Out-of-bounds read (CVE-ID: CVE-2019-5255)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of the message. A remote attacker can send specially crafted messages from a FTP client, trigger out-of-bounds read error and cause a denial of service condition on the target device.

5) Out-of-bounds read (CVE-ID: CVE-2019-5254)

The vulnerability allows a local attacker to cause the affected board abnormal.

The vulnerability exists due to insufficient validation of the message. A local attacker who logs in to the board can send specially crafted messages from the internal network port or tamper with inter-process message packets, trigger out-of-bounds read error and cause the affected board abnormal.

Remediation

Install update from vendor's website.

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-ssp-en

Vulnerable Software

Huawei AP2000: V200R005C30 - V200R009C00
Huawei IPS Module: V500R001C00SPC300 - V500R005C00
Huawei NGFW Module: V500R001C00SPC300 - V500R005C00
Huawei NIP6300: V500R001C00SPC300 - V500R005C00
Huawei NIP6600: V500R001C00SPC300 - V500R005C00
Huawei NIP6800: V500R001C50 - V500R005C00
Huawei S5700: V200R005C03
Huawei SVN5600: V200R003C00SPC100
Huawei SVN5800: V200R003C00SPC100
Huawei SVN5800-C: V200R003C00SPC100
Huawei SeMG9811: V500R002C20 - V500R005C00
Huawei Secospace AntiDDoS8000: V500R001C00 - V500R005C00SPC100
Huawei Secospace USG6300: V100R001C20SPC100 - V500R005C00
Huawei Secospace USG6500: V100R001C20SPC100 - V500R005C00
Huawei Secospace USG6600: V100R001C00SPC200 - V500R005C00SPC102
Huawei USG6000V: V500R001C10 - V500R005C00SPC100
Huawei eSpace U1981: V200R003C50SPC700