Privilege Escalation through Untrusted Search Path Vulnerability in ZTE Datacard MF190V1.0.0B04

Privilege Escalation through Untrusted Search Path Vulnerability in ZTE Datacard MF190V1.0.0B04

CVE-2015-0974 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in ZTE Datacard MF19 0V1.0.0B04 allows local users to gain privilege by modifying the 'Ucell Internet' directory to reference a malicious mms_dll_r.dll or mediaplayerdll.dll.

Learn more about our User Device Pen Test.