Lucene search
CiscoCVE-2012-3941HistoryOct 25, 2012 - 2:55 p.m.
CVE-2012-3941
2012-10-2514:55:03
CWE-119
cisco
web.nvd.nist.gov
26
cve-2012-3941
cisco
webex
recording format
wrf
buffer overflow
security vulnerability
remote code execution
nvd
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
Low
EPSS
0.036
Percentile
91.7%
Heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz72850.
Affected configurations
Node
ciscowebex_recording_format_playerMatch27.11.26
ORciscowebex_recording_format_playerMatch27.21.10
ORciscowebex_recording_format_playerMatch27.25.10
ORciscowebex_recording_format_playerMatch27.32.1
ORciscowebex_recording_format_playerMatch28.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_recording_format_player | 27.11.26 | cpe:2.3:a:cisco:webex_recording_format_player:27.11.26:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.21.10 | cpe:2.3:a:cisco:webex_recording_format_player:27.21.10:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.25.10 | cpe:2.3:a:cisco:webex_recording_format_player:27.25.10:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 27.32.1 | cpe:2.3:a:cisco:webex_recording_format_player:27.32.1:*:*:*:*:*:*:* |
| cisco | webex_recording_format_player | 28.0.0 | cpe:2.3:a:cisco:webex_recording_format_player:28.0.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2012-3941
2012-10-25 14:00:00
prion
prion
Heap overflow
2012-10-25 14:55:00
nvd
nvd
CVE-2012-3941
2012-10-25 14:55:03
securityvulns
securityvulns
Cisco WebEx multiple security vulnerabilities
2012-10-15 00:00:00
nessus
nessus
Cisco WebEx WRF Player Multiple Buffer Overflows (cisco-sa-20121010-webex)
2012-10-26 00:00:00
cisco
cisco
Multiple Vulnerabilities in the Cisco WebEx Recording Format Player
2012-10-10 16:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.2
Confidence
Low
EPSS
0.036
Percentile
91.7%
Related for CVE-2012-3941