Lucene search

K

[email protected]NVD:CVE-2012-1335

HistoryApr 05, 2012 - 1:25 p.m.

CVE-2012-1335

2012-04-0513:25:16

CWE-119

[email protected]

web.nvd.nist.gov

1

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.206 Low

EPSS

Percentile

96.4%

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1336 and CVE-2012-1337.

Affected configurations

NVD

Node

ciscowebex_recording_format_playerRange27.11.0–27.11.26

OR

ciscowebex_recording_format_playerRange27.21.0–27.21.10

OR

ciscowebex_recording_format_playerRange27.25.0–27.25.10

OR

ciscowebex_recording_format_playerRange27.32.0–27.32.1

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex

www.securitytracker.com/id?1026888

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.206 Low

EPSS

Percentile

96.4%

Related for NVD:CVE-2012-1335

prion3 nvd2 cve3 nessus1 cvelist3 cisco1 checkpoint_advisories3 seebug1