Lucene search
CiscoCVE-2012-3939HistoryOct 25, 2012 - 2:55 p.m.
CVE-2012-3939
2012-10-2514:55:03
CWE-119
cisco
web.nvd.nist.gov
28
cve-2012-3939
buffer overflow
cisco
webex
wrf
player
remote attackers
arbitrary code
denial of service
memory corruption
exploit
vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.052
Percentile
93.0%
Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted WRF file, aka Bug ID CSCua61331.
Affected configurations
Node
ciscowebex_recording_format_playerMatch27.11.26
ORciscowebex_recording_format_playerMatch27.21.10
ORciscowebex_recording_format_playerMatch27.25.10
ORciscowebex_recording_format_playerMatch27.32.1
ORciscowebex_recording_format_playerMatch28.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_recording_format_player | 27.11.26 | cpe:2.3:a:cisco:webex_recording_format_player:27.11.26:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.21.10 | cpe:2.3:a:cisco:webex_recording_format_player:27.21.10:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.25.10 | cpe:2.3:a:cisco:webex_recording_format_player:27.25.10:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.32.1 | cpe:2.3:a:cisco:webex_recording_format_player:27.32.1:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 28.0.0 | cpe:2.3:a:cisco:webex_recording_format_player:28.0.0:*:*:*:*:*:*:* |
Related
prion
prion
Buffer overflow
2012-10-25 14:55:00
nvd
nvd
CVE-2012-3939
2012-10-25 14:55:03
checkpoint_advisories
checkpoint_advisories
zdt
zdt
Cisco WebEx .wrf Memory Corruption
2012-10-12 00:00:00
cvelist
cvelist
CVE-2012-3939
2012-10-25 14:00:00
nessus
nessus
Cisco WebEx WRF Player Multiple Buffer Overflows (cisco-sa-20121010-webex)
2012-10-26 00:00:00
cisco
cisco
Multiple Vulnerabilities in the Cisco WebEx Recording Format Player
2012-10-10 16:00:00
securityvulns
securityvulns
Cisco WebEx multiple security vulnerabilities
2012-10-15 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.052
Percentile
93.0%
Related for CVE-2012-3939