CVE-2014-9416

Huawei eSpace Desktop <V200R003C00 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-9416. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a DLL hijacking vulnerability in Huawei eSpace Desktop by creating a malicious DLL that loads when the application attempts to load specific libraries. The PoC spawns a calculator as a proof of arbitrary code execution.

Description

Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4) airpcap.dll.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · clocalwindows

https://www.exploit-db.com/exploits/46866

View Code ZIP pw:eip

This exploit demonstrates a DLL hijacking vulnerability in Huawei eSpace Desktop by creating a malicious DLL that loads when the application attempts to load specific libraries. The PoC spawns a calculator as a proof of arbitrary code execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Huawei eSpace Desktop 1.1.11.103

No auth needed

Prerequisites: User interaction to open a file from a remote WebDAV or SMB share · Malicious DLL placed in a location prioritized by the application's DLL search order

MITRE ATT&CK

T1574.001 - DLL

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-406589.htm

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/152966/Huawei-eSpace-1.1.11.103-DLL-Hijacking.html

Scores

EPSS 0.0008

EPSS Percentile 22.8%

Details

Status published

Products (1)

huawei/espace_desktop < v200r003c00

Published Dec 24, 2014

Tracked Since Feb 18, 2026