26 matches found
EUVD-2015-8194
Malware in sbrugna...
Huawei Mate 7 - (/dev/hifi_misc) Privilege Escalation Exploit
Exploit for hardware platform in category local exploits / HuaWei Mate7 hifi driver Poc Writen by pray3r, / include include include include include include define HIFIMISCIOCTLWRITEPARAMS IOWR'A', 0x75, struct misciosyncparam struct misciosyncparam void parain; unsigned int parasizein; void...
CVE-2016-8774
The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before...
Buffer overflow
The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before...
CVE-2016-8774
The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before...
Security Advisory - Buffer Overflow Vulnerability in HIFI Driver of Huawei Smart Phone
The HIFI driver of some Huawei products has buffer overflow vulnerability due to the lack of a parameters check. An attacker can get ROOT privilege and send given parameter to driver to crash the system or execute arbitrary code. Vulnerability ID: HWPSIRT-2016-05220 This vulnerability has been...
Heap overflow
Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL...
CVE-2015-8318
Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL...
CVE-2015-8319
Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL...
CVE-2015-8318
CVE-2015-8318 is a heap-based buffer overflow in the HIFI driver affecting Huawei P8 models (GRA-TL00, GRA-CL00, GRA-CL10, GRA-UL00, GRA-UL10) with specific firmware updates (GRA-TL00C01B230, GRA-CL00C92B230, GRA-CL10C92B230, GRA-UL00C00B230, GRA-UL10C00B230) and Mate S models (CRR-TL00, CRR-UL00...
CVE-2015-8319
CVE-2015-8319 and CVE-2015-8318 describe heap-based buffer overflows in the HIFI driver on Huawei P8 and Mate S devices (software revisions listed in the descriptions). The vulnerabilities allow local attackers to cause a system crash or gain privileges via crafted applications. Affected products...
Huawei Mate 7 - devhifi_misc Privilege Escalation
Huawei Mate 7 - devhifimisc Privilege Escalation / HuaWei Mate7 hifi driver Poc Writen by pray3r, / include include include include include include define HIFIMISCIOCTLWRITEPARAMS IOWR'A', 0x75, struct misciosyncparam struct misciosyncparam void parain; unsigned int parasizein; void paraout;...
CVE-2015-8337
The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 before GRA-UL10C00B220 and Mate7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before...
CVE-2015-8306
Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 allows attackers to cause a denial of service system crash o...
Heap overflow
Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 befo...
Buffer overflow
Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 allows attackers to cause a denial of service system crash o...
Null pointer dereference
The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 before GRA-UL10C00B220 and Mate7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before...
CVE-2015-8306
Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 allows attackers to cause a denial of service system crash o...
CVE-2015-8337
The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 before GRA-UL10C00B220 and Mate7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before...
CVE-2015-8306
Summary: CVE-2015-8306 is a buffer overflow in the Huawei P8 HIFI driver that can be triggered via an unspecified parameter, allowing a local attacker to crash the system or execute arbitrary code. Affected devices/versions: Huawei P8 family (GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-C...