Denial of Service Vulnerability in Cisco WebEx Meetings Player
CVE-2016-1415

5.5MEDIUM

Key Information:

Vendor

Cisco
Status
Webex Wrf Player T29
Vendor
CVE Published:
3 September 2016

What is CVE-2016-1415?

The Cisco WebEx Meetings Player has a vulnerability that allows remote attackers to trigger a denial of service by sending a specially crafted WRF file. This can lead to application crashes, disrupting the user's ability to utilize the WebEx service. The risk emerges when the WRF file support feature is enabled, which may expose users to targeted attacks that can significantly impair service availability.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://www.securitytracker.com/id/1036713
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/92711
vdb-entryx_refsource_BID

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.