CVE-2014-8359
CVE-2014-8359
Untrusted search path vulnerability in Huawei Mobile Partner for Windows 23.009.05.03.1014 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll in the Mobile Partner directory.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/128767/Huawei-Mobile-Partner-DLL-Hijacking.htmlunverifiedexploitdbwww.exploit-db.com/exploits/30477unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osandamalith.wordpress.com/2014/10/20/escalating-local-privileges-using-mobile-partner/http://packetstormsecurity.com/files/128767/Huawei-Mobile-Partner-DLL-Hijacking.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/97682http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-376152.htmhttp://www.securityfocus.com/bid/70671