Lucene search

K
nvd[email protected]NVD:CVE-2012-1336
HistoryApr 05, 2012 - 1:25 p.m.

CVE-2012-1336

2012-04-0513:25:16
CWE-119
web.nvd.nist.gov
2

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.206

Percentile

96.4%

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1335 and CVE-2012-1337.

Affected configurations

Nvd
Node
ciscowebex_recording_format_playerRange27.11.0–27.11.26
OR
ciscowebex_recording_format_playerRange27.21.0–27.21.10
OR
ciscowebex_recording_format_playerRange27.25.0–27.25.10
OR
ciscowebex_recording_format_playerRange27.32.0–27.32.1
VendorProductVersionCPE
ciscowebex_recording_format_player*cpe:2.3:a:cisco:webex_recording_format_player:*:*:*:*:*:*:*:*

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.206

Percentile

96.4%