Memory Overflow Vulnerability in Huawei eSpace Desktop ActiveX Control
CVE-2014-9418

Currently unrated

Key Information:

Vendor: Huawei
Status: Espace Desktop
Vendor: CVE Published:; 24 December 2014

What is CVE-2014-9418?

The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) embedded in Huawei eSpace Desktop prior to version V200R001C03 is prone to a memory overflow vulnerability. Local users can exploit this flaw through unspecified vectors, leading to potential denial of service conditions. This vulnerability poses risks to system stability and can impact the functionality of affected installations.

References

http://www.huawei.com/en/security/psirt/security-bulletin...

x_refsource_CONFIRM

http://packetstormsecurity.com/files/152968/Huawei-eSpace...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 24, 2014
Vulnerability Reserved
Dec 24, 2014