CVE-2017-17133
Description
Huawei VP9660 V500R002C10 has a null pointer reference vulnerability in license module due to insufficient verification. An authenticated local attacker could place a malicious license file into system which cause memory null pointer accessing and related processing crash. The attacker can exploit this vulnerability to cause a denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A null pointer reference in Huawei VP9660 license module allows authenticated local attacker to cause denial of service via malicious license file.
Vulnerability
A null pointer reference vulnerability exists in the license module of Huawei VP9660 V500R002C10 due to insufficient verification of license files. An authenticated local attacker can exploit this by placing a malicious license file into the system, causing memory null pointer access and resulting in a processing crash. [1]
Exploitation
To exploit, the attacker must have local authenticated access to the device. They then place a crafted malicious license file into the license directory. Upon processing the file, the license module dereferences a null pointer, leading to a crash of the affected component. [1]
Impact
Successful exploitation causes a denial of service, crashing the related processing and potentially making the system unavailable until the affected service is restarted. [1]
Mitigation
Huawei has released software update V500R002C10SPC800 to fix this vulnerability. Affected users should upgrade to this version or later. No workarounds are documented. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Huawei Technologies Co., Ltd./VP9660v5Range: V500R002C10
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171206-01-license-enmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.