Intel ID: INTEL-SA-00097
Product family: Intel® Puma™ 5, 6, and 7 Series
Impact of vulnerability: Denial of Service
Severity rating: Important
Original release: 07/31/2018
Last revised: 07/31/2018

Summary:

Firmware in the Intel® Puma™ 5, 6, and 7 Series might experience resource depletion or timeout, which allows a network attacker to create a denial of service via crafted network traffic.

Description:

Firmware in the Intel® Puma™ 5, 6, and 7 Series might experience resource depletion or timeout, which allows a network attacker to create a denial of service via crafted network traffic.
• High 7.5 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products:

Home gateway and cable modem devices provided by internet service providers and retail device manufacturers based on the following products:
• Intel® Puma™ 5 chipset
• Intel® Puma™ 6 SoC
• Intel® Puma™ 7 SoC

Recommendations:

Intel is working with Internet service providers and manufacturers for retail devices to help deliver to affected devices the updated firmware which mitigates these issues.

Acknowledgements:

Intel would like to credit “mackey” for discovery of these issues.

Revision History

Revision Date Description
1.0 07/31/2018 Initial Release

CVE Name: CVE-2017-5693


Source: INTEL-SA-00097