Integer Overflow Vulnerability in Huawei AR3200 Software

Integer Overflow Vulnerability in Huawei AR3200 Software

CVE-2017-15344 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could cause system reboot.

Learn more about our Web Application Penetration Testing UK.