Huawei · Huawei Utps · CVE-2012-6568
**Name of the Vulnerable Software and Affected Versions**
Huawei UTPS version 1.0
**Description**
A buffer overflow issue exists in the back-end component due to a long `IDS PLUGIN NAME` string in a plug-in configuration file, allowing local users to gain privileges.
**Recommendations**
For Huawei UTPS version 1.0, consider restricting access to the plug-in configuration file to prevent exploitation of the buffer overflow issue until a fix is available. As a temporary workaround, limit the length of the `IDS PLUGIN NAME` string in the plug-in configuration file to prevent buffer overflow.