Published: 13/11/2014 Updated: 08/09/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Untrusted search path vulnerability in Huawei Mobile Partner for Windows 23.009.05.03.1014 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll in the Mobile Partner directory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei mobile_partner_firmware 23.009.05.03.1014
huawei ec177 -
huawei ec176 -
huawei ec156 -

Huawei Technologies du Mobile Broadband 160 Local Privilege Escalation Vendor: Huawei Technologies Co, Ltd Product Web Page: wwwhuaweicom Affected version: 160020316124 Summary: du Mobile Broadband is a shareware application for du EITC UAE users to support mobile broadband (3G) activation for du service provider with systems con ...

CWE-264 http://www.securityfocus.com/bid/70671 http://packetstormsecurity.com/files/128767/Huawei-Mobile-Partner-DLL-Hijacking.html http://osandamalith.wordpress.com/2014/10/20/escalating-local-privileges-using-mobile-partner/http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-376152.htm https://exchange.xforce.ibmcloud.com/vulnerabilities/97682 https://nvd.nist.gov https://www.exploit-db.com/exploits/30477/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-8359

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect