CVE-2018-0288

Name of the Vulnerable Software and Affected Versions: Cisco WebEx Recording Format (WRF) Player (affected versions not specified)

Description: A design flaw in Cisco WRF Player could allow an unauthenticated, remote attacker to access sensitive data about the application. This issue can be exploited by utilizing a maliciously crafted file that could bypass checks in the code and enable an attacker to read memory from outside the bounds of the mapped file. The vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, and Cisco WebEx WRF players.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.