Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:EEA70E0E640F049894AEBC7EF7938B2A
HistoryFeb 10, 2011 - 12:00 a.m.

WebEx WRF Player buffer overflow

2011-02-1000:00:00
SAINT Corporation
download.saintcorporation.com
18

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.282 Low

EPSS

Percentile

96.4%

JSON

Added: 02/10/2011
CVE: CVE-2010-3269
BID: 46075

Background

The WebEx Recording Format (WRF) is used to save recordings of WebEx meetings to a file. The WebEx WRF Player allows users to play a WRF file.

Problem

A buffer overflow vulnerability in the WebEx WRF Player allows command execution when a user opens a specially crafted WRF file.

Resolution

Upgrade to the latest version of WebEx WRF Player.

References

<http://www.cisco.com/warp/public/707/cisco-sa-20110201-webex.shtml&gt;
<http://www.securityfocus.com/archive/1/516095&gt;

Limitations

Exploit works on WebEx Player 3.0 and requires a user to open the exploit file in WebEx Player.

Platforms

Windows

Related

prion 1
checkpoint_advisories 2
saint 3
cvelist 1
cve 1
securityvulns 3
cisco 1
prion
prion
Stack overflow
2011-02-02 23:00:00
checkpoint_advisories
checkpoint_advisories
WRF files (CVE-2010-3269)
2011-05-03 00:00:00
Cisco WebEx Player Malformed .WRF File Code Execution (CVE-2010-3269)
2012-05-14 00:00:00
saint
saint
WebEx WRF Player buffer overflow
2011-02-10 00:00:00
WebEx WRF Player buffer overflow
2011-02-10 00:00:00
WebEx WRF Player buffer overflow
2011-02-10 00:00:00
cvelist
cvelist
CVE-2010-3269
2011-02-02 22:00:00
cve
cve
CVE-2010-3269
2011-02-02 23:00:00
securityvulns
securityvulns
[CORE-2010-1001] Cisco WebEx .atp and .wrf Overflow Vulnerabilities
2011-02-02 00:00:00
Cisco Security Advisory: Multiple Cisco WebEx Player Vulnerabilities
2011-02-02 00:00:00
Cisco WebEx Recording Format Player multiple security vulnerabilities
2011-02-02 00:00:00
cisco
cisco
Multiple Cisco WebEx Player Vulnerabilities
2011-02-01 16:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.282 Low

EPSS

Percentile

96.4%

JSON
Related for SAINT:EEA70E0E640F049894AEBC7EF7938B2A
prion1checkpoint_advisories2saint3cvelist1cve1securityvulns3cisco1