Buffer Overflow Vulnerability in Cisco Advanced Recording Format Player
CVE-2014-2133

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Recording Format Player; Webex Advanced Recording Format Player
Vendor: CVE Published:; 8 May 2014

Summary

A buffer overflow exists in the Cisco Advanced Recording Format (ARF) player that can be exploited by remote attackers through specially crafted .arf files. The vulnerability arises from improper LZW decompression, leading to memory corruption or application crashes. Users of affected versions, including T27 LD, T28, and T29, are encouraged to update their software to mitigate the risks associated with this issue. For further details, refer to Cisco's advisory.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 8, 2014
Vulnerability Reserved
Feb 25, 2014