Sign-up

ID

VAR-201609-0051


CVE

CVE-2016-6180


TITLE

Huawei Honor 4C  Smartphone software  Camera  Disturbance of service by drivers  (DoS)  Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2016-004555

DESCRIPTION

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6181, CVE-2016-6182, CVE-2016-6183, and CVE-2016-6184. ( System Crash ) There is a vulnerability that could allow an attacker to change the user's state or gain privileges. CVE-2016-6181 , CVE-2016-6182 , CVE-2016-6183 ,and CVE-2016-6184 This is a different vulnerability. : CWE Vulnerability type by CWE-284: Improper Access Control ( Inappropriate access control ) has been identified. http://cwe.mitre.org/data/definitions/284.htmlAttackers may cause a denial of service via a crafted application. ( System Crash ) You may be placed in a state or have privileges obtained. HuaweiHonor4C (Huawei Glory 4C) is a smartphone product from China's Huawei company. The HuaweiHonor4C driver has an input validation vulnerability. An attacker can induce a user to install a malicious application and use the vulnerability to pass specific parameters to the Camera driver, causing a system reboot or user privilege escalation. Huawei Honor 4C is prone to multiple unspecified security vulnerabilities Limited information is currently available regarding these issues. We will update this BID as more information emerges. The following versions are vulnerable: Huawei Honor 4C CHM-UL00C00B535 through CHM-UL00C00B556 Huawei Honor 4C CHM-TL00C01 B535 through CHM-TL00C01B556 Huawei Honor 4C CHM-TL00HC00 B535 through CHM-TL00HC00B556

Trust: 3.06

sources: NVD: CVE-2016-6180 // JVNDB: JVNDB-2016-004555 // CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // BID: 91807 // VULHUB: VHN-95000

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 1.2

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177

AFFECTED PRODUCTS

vendor:huaweimodel:honor 4cscope:eqversion:chm-ul00c00b556

Trust: 1.6

vendor:huaweimodel:honor 4cscope:eqversion:chm-tl00c01_b535

Trust: 1.6

vendor:huaweimodel:honor 4cscope:eqversion:chm-tl00hc00_b535

Trust: 1.6

vendor:huaweimodel:honor 4cscope:eqversion:chm-tl00hc00b556

Trust: 1.6

vendor:huaweimodel:honor 4cscope:eqversion:chm-ul00c00b535

Trust: 1.6

vendor:huaweimodel:honor 4cscope:eqversion:chm-tl00c01b556

Trust: 1.6

vendor:huaweimodel:honor 4c >chm-ul00c00b535,<chm-ul00c00b556scope: - version: -

Trust: 1.2

vendor:huaweimodel:honor 4c >chm-tl00c01 b535,<chm-tl00c01b556scope: - version: -

Trust: 1.2

vendor:huaweimodel:honor 4c >chm-tl00hc00 b535,<chm-tl00hc00b556scope: - version: -

Trust: 1.2

vendor:huaweimodel:honor 4cscope:eqversion:firmware chm-ul00c00b564

Trust: 0.8

vendor:huaweimodel:honor 4cscope:eqversion: -

Trust: 0.8

vendor:huaweimodel:honor 4cscope:eqversion:firmware chm-tl00hc00b564

Trust: 0.8

vendor:huaweimodel:honor 4cscope:eqversion:firmware chm-tl00c01b564

Trust: 0.8

vendor:huaweimodel:honor 4cscope: - version: -

Trust: 0.8

vendor:huaweimodel:honor 4cscope:ltversion:chm-tl00c01

Trust: 0.8

vendor:huaweimodel:honor 4cscope:ltversion:chm-tl00c00

Trust: 0.8

vendor:huaweimodel:honor 4cscope:ltversion:chm-ul00c00

Trust: 0.8

vendor:huaweimodel:honor 4c chm-ul00c00b556scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-ul00c00b535scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00hc00b556scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00hc00 b535scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00c01b556scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00c01 b535scope: - version: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-ul00c00b564scope:neversion: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00hc00b564scope:neversion: -

Trust: 0.3

vendor:huaweimodel:honor 4c chm-tl00c01b564scope:neversion: -

Trust: 0.3

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // BID: 91807 // JVNDB: JVNDB-2016-004555 // CNNVD: CNNVD-201607-500 // NVD: CVE-2016-6180

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2016-6180
value: HIGH

Trust: 1.0

NVD: CVE-2016-6180
value: HIGH

Trust: 0.8

CNVD: CNVD-2016-05173
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2016-05177
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201607-500
value: MEDIUM

Trust: 0.6

VULHUB: VHN-95000
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2016-6180
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2016-05173
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

CNVD: CNVD-2016-05177
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-95000
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2016-6180
baseSeverity: HIGH
baseScore: 7.0
vectorString: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.0
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // VULHUB: VHN-95000 // JVNDB: JVNDB-2016-004555 // CNNVD: CNNVD-201607-500 // NVD: CVE-2016-6180

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.1

problemtype:Inappropriate access control (CWE-284) [NVD evaluation ]

Trust: 0.8

sources: VULHUB: VHN-95000 // JVNDB: JVNDB-2016-004555 // NVD: CVE-2016-6180

THREAT TYPE

local

Trust: 0.9

sources: BID: 91807 // CNNVD: CNNVD-201607-500

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201607-500

PATCH

title:huawei-sa-20160716-01-smartphoneurl:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160716-01-smartphone-en

Trust: 0.8

title:HuaweiHonor4C driver patch for input validation vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/79493

Trust: 0.6

title:HuaweiHonor4C driver input verification vulnerability (CNVD-2016-05177) patchurl:https://www.cnvd.org.cn/patchInfo/show/79497

Trust: 0.6

title:Huawei Honor 4C Fixes for driver input verification security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=62995

Trust: 0.6

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // JVNDB: JVNDB-2016-004555 // CNNVD: CNNVD-201607-500

EXTERNAL IDS

db:NVDid:CVE-2016-6180

Trust: 4.2

db:BIDid:91807

Trust: 2.1

db:JVNDBid:JVNDB-2016-004555

Trust: 0.8

db:CNNVDid:CNNVD-201607-500

Trust: 0.7

db:CNVDid:CNVD-2016-05173

Trust: 0.6

db:CNVDid:CNVD-2016-05177

Trust: 0.6

db:NSFOCUSid:34729

Trust: 0.6

db:VULHUBid:VHN-95000

Trust: 0.1

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // VULHUB: VHN-95000 // BID: 91807 // JVNDB: JVNDB-2016-004555 // CNNVD: CNNVD-201607-500 // NVD: CVE-2016-6180

REFERENCES

url:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160716-01-smartphone-en

Trust: 3.2

url:http://www.securityfocus.com/bid/91807

Trust: 1.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-6180

Trust: 0.8

url:http://www.nsfocus.net/vulndb/34729

Trust: 0.6

url:http://www.huawei.com

Trust: 0.3

sources: CNVD: CNVD-2016-05173 // CNVD: CNVD-2016-05177 // VULHUB: VHN-95000 // BID: 91807 // JVNDB: JVNDB-2016-004555 // CNNVD: CNNVD-201607-500 // NVD: CVE-2016-6180

CREDITS

Yang Chengming, Yang Chao, You Ning, Xiao Peng and Song Yang of Alibaba Mobile Security Team.

Trust: 0.9

sources: BID: 91807 // CNNVD: CNNVD-201607-500

SOURCES

db:CNVDid:CNVD-2016-05173
db:CNVDid:CNVD-2016-05177
db:VULHUBid:VHN-95000
db:BIDid:91807
db:JVNDBid:JVNDB-2016-004555
db:CNNVDid:CNNVD-201607-500
db:NVDid:CVE-2016-6180

LAST UPDATE DATE

2025-04-13T23:14:14.369000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2016-05173date:2016-07-22T00:00:00
db:CNVDid:CNVD-2016-05177date:2016-07-22T00:00:00
db:VULHUBid:VHN-95000date:2016-09-08T00:00:00
db:BIDid:91807date:2016-07-16T00:00:00
db:JVNDBid:JVNDB-2016-004555date:2024-12-16T08:15:00
db:CNNVDid:CNNVD-201607-500date:2016-09-08T00:00:00
db:NVDid:CVE-2016-6180date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:CNVDid:CNVD-2016-05173date:2016-07-22T00:00:00
db:CNVDid:CNVD-2016-05177date:2016-07-22T00:00:00
db:VULHUBid:VHN-95000date:2016-09-07T00:00:00
db:BIDid:91807date:2016-07-16T00:00:00
db:JVNDBid:JVNDB-2016-004555date:2016-09-09T00:00:00
db:CNNVDid:CNNVD-201607-500date:2016-07-19T00:00:00
db:NVDid:CVE-2016-6180date:2016-09-07T19:28:04.723