Buffer Overflow in Cisco WebEx Recording Format Player
CVE-2012-3936

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Recording Format Player
Vendor: CVE Published:; 25 October 2012

Summary

A buffer overflow vulnerability exists in the Cisco WebEx Recording Format (WRF) player for specific versions. This flaw allows remote attackers to execute arbitrary code by crafting a malicious WRF file. Users of the affected versions T27 before LD SP32 EP10 and T28 before T28.4 are particularly at risk, as exploiting this vulnerability can lead to unauthorized access and damage to systems.

References

http://osvdb.org/86141

vdb-entryx_refsource_OSVDB

http://www.securitytracker.com/id?1027639

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/55866

vdb-entryx_refsource_BID

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 25, 2012
Vulnerability Reserved
Jul 10, 2012