Stack overflow

2011-02-0223:00:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.282 Low

EPSS

Percentile

96.9%

JSON

Multiple stack-based buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to execute arbitrary code via a crafted (1) .wrf or (2) .arf file, related to use of a function pointer in a callback mechanism.

CPENameOperatorVersion
webex_advanced_recording_format_playereq27.11.0.3328
webex_advanced_recording_format_playereq26.49
webex_advanced_recording_format_playereq27.12
webex_advanced_recording_format_playereq27.10
webex_advanced_recording_format_playereq27.13
webex_recording_format_playereq27.10
webex_recording_format_playereq26.49
webex_recording_format_playereq27.13
webex_recording_format_playereq27.12
webex_recording_format_playereq27.11.0.3328

Name	Operator	Version
webex_advanced_recording_format_player	eq	27.11.0.3328
webex_advanced_recording_format_player	eq	26.49
webex_advanced_recording_format_player	eq	27.12
webex_advanced_recording_format_player	eq	27.10
webex_advanced_recording_format_player	eq	27.13
webex_recording_format_player	eq	27.10
webex_recording_format_player	eq	26.49
webex_recording_format_player	eq	27.13
webex_recording_format_player	eq	27.12
webex_recording_format_player	eq	27.11.0.3328