A vulnerability in the Cisco Webex Player for Webex Recording Format (WRF) files could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
An attacker could exploit this vulnerability by sending a user a link or email attachment with a malicious WRF file and persuading the user to open the file in the Cisco Webex Player. A successful exploit could cause the affected player to crash, resulting in a DoS condition.
For more information about this vulnerability, see the Details [“#details”] section of this security advisory.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180905-webex-player-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180905-webex-player-dos”]
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | webex_wrf_player_t29 | any | cpe:2.3:a:cisco:webex_wrf_player_t29:any:*:*:*:*:*:*:* |
cisco | webex_player | any | cpe:2.3:a:cisco:webex_player:any:*:*:*:*:macos:*:* |