CVE-2012-6568

Huawei Utps - Memory Corruption

Title source: rule

Description

Buffer overflow in the back-end component in Huawei UTPS 1.0 allows local users to gain privileges via a long IDS_PLUGIN_NAME string in a plug-in configuration file.

Exploits (1)

exploitdb WORKING POC

by Dark-Puzzle · perllocalwindows

https://www.exploit-db.com/exploits/21988

View Code ZIP pw:eip

References (2)

[Exploit] http://packetstormsecurity.org/files/download/116604/huawei-overflow.txt

[Vendor Advisory] http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-204627.htm

Scores

EPSS 0.0009

EPSS Percentile 25.1%

Details

CWE

CWE-119

Status published

Products (1)

huawei/utps 1.0

Published Jun 20, 2013

Tracked Since Feb 18, 2026