Arbitrary Memory Write Vulnerability in Huawei Smart Phones with MTK Platform

Arbitrary Memory Write Vulnerability in Huawei Smart Phones with MTK Platform

CVE-2017-8181 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

Learn more about our User Device Pen Test.