5 matches found
CVE-2014-9415
Huawei eSpace Desktop prior to V100R001C03 is affected by CVE-2014-9415 due to improper handling of QES files, allowing a local user to trigger a denial of service (program exit). Affected component is the eSpace Desktop client/process when importing a crafted QES file, with the issue described a...
CVE-2014-9417
CVE-2014-9417 concerns Huawei eSpace Desktop (Meetings component) prior to V100R001C03. The vulnerability is a denial of service caused by processing a crafted image file, leading to program exit when the eSpace Meeting imports/handles certain image formats. Public entries describe a buffer/forma...
CVE-2014-9418
Huawei eSpace Desktop (eSpace Meeting) is affected by a heap-based memory overflow in the ActiveX controls ContactsCtrl.dll and eSpaceStatusCtrl.dll. The vulnerability occurs when parsing a large amount of bytes (GetNameyNum() in ContactsCtrl.dll), leading to memory overflow and possible denial o...
CVE-2014-9416
Huawei eSpace Desktop (pre-V200R003C00) is affected by DLL Hijacking involving mfc71enu.dll, mfc71loc.dll, tcapi.dll and airpcap.dll. The vulnerability, described as untrusted search path leading to arbitrary code execution, relies on loading these libraries via Trojan-horse scenarios. Multiple C...
CVE-2018-7976
CVE-2018-7976 is a stored XSS vulnerability in Huawei eSpace Desktop V300R001C00 and V300R001C50 caused by insufficient input validation. An authenticated, remote attacker can send abnormal messages to trigger XSS, potentially causing the eSpace Desktop to hang; behavior returns to normal after a...