Published: 25/10/2012 Updated: 04/05/2013

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote malicious users to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz72958.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco webex recording format player 27.21.10
cisco webex recording format player 27.11.26
cisco webex recording format player 27.25.10
cisco webex recording format player 28.0.0
cisco webex recording format player 27.32.1

The Cisco WebEx Recording Format (WRF) player contains six buffer overflow vulnerabilities In some cases, exploitation of the vulnerabilities could allow a remote attacker to execute arbitrary code on the system with the privileges of a targeted user The Cisco WebEx WRF Player is an application used to play back WRF WebEx meeting recordings tha ...

CWE-119 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-webex http://osvdb.org/86139 http://www.securityfocus.com/bid/55866 http://www.securitytracker.com/id?1027639 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-webex

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-3940

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect