4 matches found
CVE-2011-3319
Buffer overflow in the WRF parsing functionality in the Cisco WebEx Recording Format WRF player T26 before SP49 EP40 and T27 before SP28 allows remote attackers to execute arbitrary code via a crafted WRF file...
Cisco WebEx Player ATDL2006.dll Heap Memory Corruption (CVE-2011-3319)
A code execution vulnerability exists in Cisco WebEx Player...
ZDI-11-341 : Cisco WebEx Player WRF Type 0 Parsing Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-11-341 : Cisco WebEx Player WRF Type 0 Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-341 December 7, 2011 - -- CVE ID: CVE-2011-3319 - -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C - -- Affected Vendors:...
CVE-2011-3319
Cisco WebEx Player CVE-2011-3319 is a heap-based buffer overflow in the WRF parsing path (atdl2006.dll) that allows remote code execution via a crafted WRF file. Affected client builds include T26 before SP49 EP40 and T27 before SP28; fixed in later builds (e.g., T26 SP49 EP40, T27 SP11/EP23/EP9/...