CVE-2014-8358
First published: Mon Dec 11 2017(Updated: )
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a low privilege account and modifying Mobile Partner.exe.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Ec156 Firmware | =v200r003b009d05sp03c1014 | |
| Huawei EC156 | ||
| Huawei Ec176 Firmware | =v200r003b009d05sp03c1014 | |
| Huawei Ec176 | ||
| Huawei Ec177 Firmware | =v200r003b009d05sp03c1014 | |
| Huawei Ec177 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/author
- agent/tags
- agent/event
- agent/description
- agent/first-publish-date
- vendor/huawei
- canonical/huawei ec156 firmware
- version/huawei ec156 firmware/v200r003b009d05sp03c1014
- canonical/huawei ec156
- canonical/huawei ec176 firmware
- version/huawei ec176 firmware/v200r003b009d05sp03c1014
- canonical/huawei ec176
- canonical/huawei ec177 firmware
- version/huawei ec177 firmware/v200r003b009d05sp03c1014
- canonical/huawei ec177