PT-2008-4934 · Cisco · Webex Meeting Manager
Publicado
2008-08-08
·
Atualizado
2017-09-29
·
CVE-2008-3558
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco WebEx Meeting Manager versions prior to 20.2008.2606.4919
Description
The issue is related to a stack-based buffer overflow in the WebexUCFObject ActiveX control. This can be exploited by remote attackers to execute arbitrary code via a long argument to the
NewObject method.Recommendations
For versions prior to 20.2008.2606.4919, update to version 20.2008.2606.4919 or later to resolve the issue. As a temporary workaround, consider restricting access to the
atucfobj.dll library to minimize the risk of exploitation.Exploit
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Webex Meeting Manager