Huawei HiSuite For Windows 4.0.3.301 Privilege Escalation

Posted by deepcore on July 2, 2016 – 1:16 am

A privilege escalation vulnerability was identified in the Huawei HiSuite software which can be used by a local user to elevate privileges to become the SYSTEM user. The root cause of the problem are insecure ACLs on the HandSet service directory which allows any authenticated user to place a crafted DLL file in that directory to perform a DLL hijacking attack. Versions 4.0.3.301 and below are affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« KWSPHP CMS v1.6.995 – Persistent Cross Site Vulnerability RockLoader SQL Injection / Shell Upload »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Huawei HiSuite For Windows 4.0.3.301 Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL