CVE-2014-9417

Huawei eSpace Desktop <V100R001C03 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-9417. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Huawei eSpace Meeting's image file handling functionality, allowing arbitrary code execution via crafted image files (e.g., BMP, PNG, JPEG). The PoC includes crash analysis and memory dumps showing controlled overwrites.

Description

The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted image.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · textdoswindows
https://www.exploit-db.com/exploits/46867

This exploit demonstrates a buffer overflow vulnerability in Huawei eSpace Meeting's image file handling functionality, allowing arbitrary code execution via crafted image files (e.g., BMP, PNG, JPEG). The PoC includes crash analysis and memory dumps showing controlled overwrites.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Huawei eSpace Meeting (eSpace ECS, eSpace Desktop, eSpace Meeting, eSpace UC) v1.1.11.103
No auth needed
Prerequisites: Victim must open a maliciously crafted image file in the eSpace Meeting whiteboard functionality
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

EPSS 0.0064
EPSS Percentile 45.9%

Details

CWE
CWE-20
Status published
Products (1)
huawei/espace_desktop < v100r001c03
Published Dec 24, 2014
Tracked Since Feb 18, 2026