Denial of Service Vulnerability in Cisco WebEx Network Recording Player
CVE-2017-12360

4.3MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Webex Network Recording Player
Vendor: CVE Published:; 30 November 2017

Summary

A vulnerability in the Cisco WebEx Network Recording Player related to WRF files can be exploited by an attacker to induce a denial of service condition. By sending a malicious WRF file through email or URL, an attacker may convince the user to open it, leading to a crash in the affected player and subsequently causing a service disruption. This issue impacts Cisco WebEx Business Suite, Cisco WebEx Meetings, and the WebEx WRF Player, making it critical for users to remain aware and avoid opening untrusted files.

Affected Version(s)

Cisco WebEx Network Recording Player Cisco WebEx Network Recording Player

References

https://tools.cisco.com/security/center/content/CiscoSecu...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/102001

vdb-entryx_refsource_BID

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 30, 2017
Vulnerability Reserved
Aug 3, 2017