CVE-2017-15343
CVE-2017-15343
In short
A flaw in Huawei AR3200 routers allows an attacker to send a specially crafted network message that causes the system to crash or reboot. No login is required, making this vulnerability easy to exploit remotely.
Technical detail
Integer overflow vulnerability in SCTP message processing affecting Huawei AR3200 across multiple firmware versions. Remote, unauthenticated attacker can trigger integer overflow via malformed SCTP packets, leading to denial of service (system reboot). Affected versions: V200R006C10 through V200R008C30.
Summary generated and translated by AI from the official description.
Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could system reboot.
Affected products
Huawei Technologies Co., Ltd. · AR3200Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →