PT-2012-4458 · Cisco · Cisco Webex Recording Format (Wrf) Player
Published
2012-06-29
·
Updated
2018-12-03
·
CVE-2012-3054
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco WebEx Recording Format (WRF) player versions T27 L through SP11 EP26
Cisco WebEx Recording Format (WRF) player versions T27 LB through SP21 EP10
Cisco WebEx Recording Format (WRF) player versions T27 LC before SP25 EP11
Cisco WebEx Recording Format (WRF) player versions T27 LD before SP32 CP2
Cisco WebEx Recording Format (WRF) player versions T28 L10N before SP1
Description
A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via a crafted WRF file.
Recommendations
For versions T27 L through SP11 EP26, update to a version after SP11 EP26 to resolve the issue.
For versions T27 LB through SP21 EP10, update to a version after SP21 EP10 to resolve the issue.
For versions T27 LC before SP25 EP11, update to a version SP25 EP11 or later to resolve the issue.
For versions T27 LD before SP32 CP2, update to a version SP32 CP2 or later to resolve the issue.
For versions T28 L10N before SP1, update to a version SP1 or later to resolve the issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Webex Recording Format (Wrf) Player