Design/Logic Flaw

2014-12-2418:59:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

40.3%

JSON

Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4) airpcap.dll.

CPENameOperatorVersion
espace_desktopeq<= v200r3c0

CPE	Name	Operator	Version
	espace_desktop	eq	<= v200r3c0

References

packetstormsecurity.com/files/152966/Huawei-eSpace-1.1.11.103-DLL-Hijacking.html

www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-406589.htm