Remote Control Vulnerability of Huawei Smartphone RCS Module

Authors:HUAWEI              Risk:High

CVE:CVE-2018-0151          0day:Remote Control 

0day -id:0DAY-176112        Date:2018-04-27

Summary

There is a remote control vulnerability in RCS module of some Huawei smart phones. An attacker can trick a user to install a malicious application. When the application connects with RCS for the first time, it needs user to manually click to agree. In addition, the attacker needs to obtain the key that RCS uses to authenticate the application. Successful exploitation may cause the attacker to control keyboard remotely.

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2018-7901.

Software Versions and Fixes

Product Name Affected Version Resolved Product and Version
ALP-AL00B earlier versions than 8.0.0.129 Upgrade to 8.0.0.129(SP2C00)
BLA-AL00B earlier versions than 8.0.0.129 Upgrade to 8.0.0.129(SP2C00)

Impact

By exploiting this vulnerability, an attacker can control keyboard remotely.

Vulnerability Scoring Details

The vulnerability classification has been performed by using the CVSSv3 scoring system (http://www.first.org/cvss/specification-document).

Base Score: 4.4 (AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L)

Temporal Score: 4.1 (E:F/RL:O/RC:C)

Technique Details

This vulnerability can be exploited only when the following conditions are present:

An attacker should trick a user to install a malicious application.

Vulnerability details:

There is a remote control vulnerability in RCS module of some Huawei smart phones. An attacker can trick a user to install a malicious application. When the application connects with RCS for the first time, it needs user to manually click to agree. In addition, the attacker needs to obtain the key that RCS uses to authenticate the application. Successful exploitation may cause the attacker to control keyboard remotely.

Temporary Fix

None

Obtaining Fixed Software

The product that supports automatic update will receive a system update prompt. You can install the update to fix the vulnerability.

Source

This vulnerability was discovered by Huawei internal tester.

Leave a Reply