CVE-2014-9418

low

Published 2014-12-24 · Modified 2026-05-06

CVSS v3

—

CVSS v2

2.1

VIR risk

2.1

Description

The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-406589.htm

Application impact

Vendor	Product	Versions	Fixed
huawei	espace_desktop	`{"endIncluding":"v200r001c03"}`

References

http://packetstormsecurity.com/files/152968/Huawei-eSpace-1.1.11.103-Meeting-Heap-Overflow.html
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-406589.htm
http://packetstormsecurity.com/files/152968/Huawei-eSpace-1.1.11.103-Meeting-Heap-Overflow.html
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-406589.htm

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.