14 matches found
CVE-2017-17328
Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability. The software does not process certain variable properly when handle certain process. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause...
Denial of service
Huawei smartphones with software of MHA-AL00AC00B125 have an improper resource management vulnerability. The software does not properly manage the resource when do device register operation. An attacker tricks the user who has root privilege to install a crafted application, successful exploit...
Integer overflow
Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability. The software does not process certain variable properly when handle certain process. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause...
CVE-2017-17327
Huawei smartphones with software of MHA-AL00AC00B125 have an improper resource management vulnerability. The software does not properly manage the resource when do device register operation. An attacker tricks the user who has root privilege to install a crafted application, successful exploit...
CVE-2017-17328
Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability. The software does not process certain variable properly when handle certain process. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause...
Huawei MHA-AL00A Integer Overflow Vulnerability
The Huawei MHA-AL00A is a smartphone product from the Chinese company Huawei Huawei. An integer overflow vulnerability exists in Huawei MHA-AL00A MHA-AL00AC00B125 version, which arises from the program failing to properly handle a variable during process handling. The vulnerability can be exploit...
CVE-2017-2701
Mate 9 with software MHA-AL00AC00B125 has a denial of service DoS vulnerability. An attacker tricks a user into installing a malicious application. Since the system does not verify the broadcasting message from the application, it could be exploited to cause some functions of system unavailable...
CVE-2017-2706
Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...
Denial of service
Mate 9 with software MHA-AL00AC00B125 has a denial of service DoS vulnerability. An attacker tricks a user into installing a malicious application. Since the system does not verify the broadcasting message from the application, it could be exploited to cause some functions of system unavailable...
CVE-2017-2707
Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...
CVE-2017-2706
Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...
Directory traversal
Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...
CVE-2017-2706
Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...
CVE-2017-2707
CVE-2017-2707 pertains to Huawei Mate 9 devices with software MHA-AL00AC00B125, where a privilege-escalation flaw in the Push module can be triggered by a user-saving malicious rich-media in a message. The underlying issue enables an attacker to delete messages or impersonate the user to send mes...