Memory Leak Vulnerability in H323 Protocol Affects MAX PRESENCE and TP Series by Huawei
CVE-2017-8201

6.5MEDIUM

Key Information:

Vendor: McAfee
Status: Max Presence,tp3106,tp3206,
Vendor: CVE Published:; 15 November 2017

What is CVE-2017-8201?

A memory leak vulnerability exists within the H323 protocol in specific Huawei products, including MAX PRESENCE and the TP series. By exploiting insufficient verification of crafted packets, an attacker with user access can trigger a memory leak. This exploitation may lead to performance degradation and result in a denial of service condition, compromising the availability of the affected systems.

Affected Version(s)

MAX PRESENCE,TP3106,TP3206, V100R001C00,V100R002C00,V100R002C00,

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/101952

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 15, 2017
Vulnerability Reserved
Apr 25, 2017

McAfee

What is CVE-2017-8201?

Affected Version(s)

References

CVSS V3.1

Timeline