Published: 03/09/2016 Updated: 03/09/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote malicious users to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco webex wrf player t29 sp10_base

A vulnerability in Cisco WebEx Meetings Player could allow an unauthenticated, remote attacker to cause WebEx Meetings Player to crash The vulnerability is due to improper validation of user-supplied files An attacker could exploit this vulnerability by persuading a user to open a malicious file by using the affected software A successful explo ...

##################################################################################### # Application: Cisco Webex Player # Platforms: Windows # Versions: Cisco Webex Meeting Player version T2910 # Author: Francis Provencher of COSIG # Website: cosiggouvqcca/en/advisory/ # Twitter: @COSIG_ # Date: August 31, 2016 # CVE: CVE-2016-1415 # C ...

CWE-399 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-webex http://www.securityfocus.com/bid/92711 http://www.securitytracker.com/id/1036713 https://www.exploit-db.com/exploits/40509/https://nvd.nist.gov https://www.exploit-db.com/exploits/40509/http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-webex

CVE-2016-1415

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect