Lucene search

[email protected]CVE-2010-3043

HistoryFeb 02, 2011 - 11:00 p.m.

CVE-2010-3043

2011-02-0223:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-3043

cisco

webex

players

remote code execution

buffer overflow

arf

wrf

denial of service

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.028 Low

EPSS

Percentile

90.6%

JSON

Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .wrf or (2) .arf file, a different vulnerability than CVE-2010-3041, CVE-2010-3042, and CVE-2010-3044.

CPENameOperatorVersion
cisco:webex_recording_format_playercisco webex recording format playereq27.10
cisco:webex_recording_format_playercisco webex recording format playereq26.49
cisco:webex_recording_format_playercisco webex recording format playereq27.13
cisco:webex_recording_format_playercisco webex recording format playereq27.12
cisco:webex_recording_format_playercisco webex recording format playereq27.11.0.3328
cisco:webex_advanced_recording_format_playercisco webex advanced recording format playereq27.11.0.3328
cisco:webex_advanced_recording_format_playercisco webex advanced recording format playereq26.49
cisco:webex_advanced_recording_format_playercisco webex advanced recording format playereq27.12
cisco:webex_advanced_recording_format_playercisco webex advanced recording format playereq27.10
cisco:webex_advanced_recording_format_playercisco webex advanced recording format playereq27.13

CPE	Name	Operator	Version
cisco:webex_recording_format_player	cisco webex recording format player	eq	27.10
cisco:webex_recording_format_player	cisco webex recording format player	eq	26.49
cisco:webex_recording_format_player	cisco webex recording format player	eq	27.13
cisco:webex_recording_format_player	cisco webex recording format player	eq	27.12
cisco:webex_recording_format_player	cisco webex recording format player	eq	27.11.0.3328
cisco:webex_advanced_recording_format_player	cisco webex advanced recording format player	eq	27.11.0.3328
cisco:webex_advanced_recording_format_player	cisco webex advanced recording format player	eq	26.49
cisco:webex_advanced_recording_format_player	cisco webex advanced recording format player	eq	27.12
cisco:webex_advanced_recording_format_player	cisco webex advanced recording format player	eq	27.10
cisco:webex_advanced_recording_format_player	cisco webex advanced recording format player	eq	27.13

References

securitytracker.com/id?1025016

tools.cisco.com/security/center/viewAlert.x?alertId=22016

www.cisco.com/en/US/products/products_security_advisory09186a0080b6913f.shtml

www.securityfocus.com/bid/46075

exchange.xforce.ibmcloud.com/vulnerabilities/65074

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.028 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2010-3043

cvelist4 prion4 cve3 cisco1 securityvulns2