Lucene search
K
CiscoWebex Recording Format Player

28 matches found

CVE
CVE
added 2012/04/04 9:0 p.m.136 views

CVE-2012-1337

CVE-2012-1337 is a vulnerability in Cisco WebEx Recording Format (WRF) Player where a buffer overflow in the WRF parser (ATAS32/related code paths) allows remote code execution via a crafted WRF file. Affected are multiple T27 builds across Windows, macOS, and Linux (e.g., L/LB/LC/LD branches wit...

9.3CVSS7.7AI score0.23884EPSS
CVE
CVE
added 2011/10/27 9:0 p.m.134 views

CVE-2011-3319

Cisco WebEx Player CVE-2011-3319 is a heap-based buffer overflow in the WRF parsing path (atdl2006.dll) that allows remote code execution via a crafted WRF file. Affected client builds include T26 before SP49 EP40 and T27 before SP28; fixed in later builds (e.g., T26 SP49 EP40, T27 SP11/EP23/EP9/...

9.3CVSS7.8AI score0.0302EPSS
CVE
CVE
added 2012/04/04 9:0 p.m.133 views

CVE-2012-1336

CVE-2012-1335/1336/1337 pertain to buffer/heap overflows in the Cisco WebEx Recording Format (WRF) Player (atas32.dll and related components) across Windows/macOS/Linux T27 variants. The root cause cited in a checkpoint advisory (CVE-2012-1336) and follow-ons describes an integer overflow that le...

9.3CVSS7.7AI score0.04912EPSS
CVE
CVE
added 2011/02/02 10:0 p.m.128 views

CVE-2010-3269

CVE-2010-3269 : A stack-based buffer overflow in Cisco WebEx Player for WRF/ARF formats allows remote code execution when a user opens a crafted WRF/ARF file. Affected are WebEx Player builds T27LB SP21 EP3 and T27LC SP22 (prior to these fixes). The root cause is an overflow related to handling o...

9.3CVSS7.7AI score0.11414EPSS
CVE
CVE
added 2012/04/04 9:0 p.m.126 views

CVE-2012-1335

The CVE-2012-1335, CVE-2012-1336, and CVE-2012-1337 flaws affect Cisco WebEx Recording Format (WRF) Player. The issues are buffer/heap buffer overflows in the WRF Player (notably involving atas32.dll on Windows) triggered by processing crafted WRF files, permitting remote code execution. Affected...

9.3CVSS7.7AI score0.0412EPSS
CVE
CVE
added 2011/10/27 9:0 p.m.66 views

CVE-2011-4004

Cisco WebEx Player CVE-2011-4004 is a buffer overflow in ATAS32.DLL when processing WRF file values, enabling remote code execution. The issue arises from linesProcessed being used in memcpy logic after an underadjusted subtraction, allowing control of the destination buffer pointer. Affects Cisc...

9.3CVSS7.8AI score0.03811EPSS
CVE
CVE
added 2014/05/08 10:0 a.m.61 views

CVE-2014-2134

CVE-2014-2134 affects Cisco WebEx Recording Format (WRF) Player. A heap-based buffer overflow in the WRF parser allows remote attackers to corrupt memory, potentially executing arbitrary code or causing an application crash via a crafted audio channel in a .wrf file. Impact noted as remote code e...

9.3CVSS8.3AI score0.03831EPSS
CVE
CVE
added 2011/02/02 10:0 p.m.60 views

CVE-2010-3043

The CVE-2010-3043 entry concerns Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. Affected components are the WebEx Players T27LB before SP21 EP3 and T27LC before SP22, with the root cause described as multiple buffer overflows in atas32.dll. Impacts stated are remo...

9.3CVSS7.9AI score0.05099EPSS
CVE
CVE
added 2012/06/29 2:37 p.m.56 views

CVE-2012-3054

CVE-2012-3054 is a heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player. A crafted WRF file could allow remote code execution on affected hosts. The issue affects the WRF (and related ARF) players as described in Cisco’s advisory (CSCtz72977) and referenced CVE entries. Exp...

9.3CVSS8.2AI score0.03911EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.56 views

CVE-2012-3937

CVE-2012-3937 describes a buffer overflow in the Cisco WebEx Recording Format (WRF) Player for versions T27 before LD SP32 EP10 and T28 before T28.4, allowing remote code execution via a crafted WRF file. The issue affects the WebEx WRF Player used to play back recordings; exploitation would occu...

9.3CVSS8AI score0.05262EPSS
CVE
CVE
added 2011/02/02 10:0 p.m.55 views

CVE-2010-3044

CVE-2010-3044: Multiple buffer-overflow vulnerabilities in Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. Affected components are the WebEx Players T27LB before SP21 EP3 and T27LC before SP22, with exploitation via crafted .wrf or .arf files, related to atas32.dll...

9.3CVSS8AI score0.05539EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.54 views

CVE-2012-3940

CVE-2012-3940 refers to buffer overflow vulnerabilities in the Cisco WebEx Recording Format (WRF) Player. The affected components are WebEx WRF Player versions used to play WRF recordings, with T27 prior to LD SP32 EP10 and T28 prior to T28.4 vulnerable to remote code execution via a crafted WRF ...

9.3CVSS8AI score0.05262EPSS
CVE
CVE
added 2014/05/08 10:0 a.m.54 views

CVE-2014-2135

Cisco WebEx ARF/WRF Player buffers overflow via crafted ARF/WRF files (ARF: T27 LD before SP32 EP16, T28 before T28.12, T29 before T29.2) enabling remote code execution or memory corruption with DoS. Root cause: memory corruption in the file parsing logic. Affected products: Cisco WebEx ARF/WRF P...

9.3CVSS8.2AI score0.03794EPSS
CVE
CVE
added 2012/06/29 2:37 p.m.53 views

CVE-2012-3057

Summary: CVE-2012-3057 is a heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player. A crafted size field in audio data within a WRF file could allow a remote attacker to execute arbitrary code. Affected software includes multiple WebEx WRF player builds (as listed in the vuln...

9.3CVSS8.2AI score0.03189EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.53 views

CVE-2012-3938

The CVE-2012-3938 entry concerns a buffer overflow in the Cisco WebEx Recording Format (WRF) Player. The affected versions are WRF Player T27 before LD SP32 EP10 and T28 before T28.4, vulnerable when handling crafted WRF files, enabling a remote attacker to execute arbitrary code. Connected docum...

9.3CVSS8AI score0.05217EPSS
CVE
CVE
added 2013/09/06 10:0 a.m.53 views

CVE-2013-1117

CVE-2013-1117 refers to a buffer overflow in the exception handler of Cisco WebEx Recording Format (WRF) and ARF players. The vulnerability could allow remote attackers to execute arbitrary code or cause a denial of service through a crafted WRF/ARF file, as described in Cisco’s advisory (Bug ID ...

9.3CVSS8.2AI score0.03124EPSS
CVE
CVE
added 2014/05/08 10:0 a.m.53 views

CVE-2014-2132

CVE-2014-2132 affects the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. A crafted .wrf or .arf file can trigger a buffer over-read, leading to a denial of service (application crash). Public sources assign a high impact (AV:N/AC:L/I/N/A:C) and note network delive...

7.8CVSS6.8AI score0.01593EPSS
CVE
CVE
added 2011/02/02 10:0 p.m.52 views

CVE-2010-3042

CVE-2010-3042 concerns multiple buffer overflows in Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players (T27LB before SP21 EP3 and T27LC before SP22). A crafted or file can cause a denial of service (application crash) and potentially allow arbitrary code execution. T...

9.3CVSS7.9AI score0.05093EPSS
CVE
CVE
added 2014/05/08 10:0 a.m.52 views

CVE-2014-2133

CVE-2014-2133: A buffer overflow in Cisco WebEx ARF/WRF players (ARF: T27 LD before SP32 EP16, T28 before T28.12, T29 before T29.2) allows remote attackers to trigger memory corruption via a crafted ARF file that exploits improper LZW decompression, potentially enabling arbitrary code execution o...

9.3CVSS8.2AI score0.03124EPSS
CVE
CVE
added 2011/02/02 10:0 p.m.50 views

CVE-2010-3041

Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players (T27LB before SP21 EP3 and T27LC before SP22) contain multiple buffer overflow vulnerabilities in atas32.dll that can be triggered by crafted .wrf or .arf files. Affected components/files: WRF/ARF players and atas32.dl...

9.3CVSS8AI score0.05539EPSS
CVE
CVE
added 2012/06/29 2:37 p.m.50 views

CVE-2012-3056

The CVE-2012-3056 issue affects Cisco WebEx Recording Format (WRF) and ARF players. Root cause: buffer overflow vulnerabilities in WRF/ARF components when processing crafted WRF files (Bug CSCtz72946). Impact: remote code execution or memory corruption leading to a possible denial of service. Aff...

9.3CVSS8.2AI score0.03124EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.50 views

CVE-2012-3939

CVE-2012-3939 affects Cisco WebEx Recording Format (WRF) Player prior to LD SP32 EP10 for T27 and before T28.4 for T28. The issue is a memory corruption caused by buffer overflows in atas32.dll when processing crafted WRF files, enabling remote code execution (or memory corruption/DoS) if a user ...

9.3CVSS8.1AI score0.05155EPSS
CVE
CVE
added 2014/05/08 10:0 a.m.50 views

CVE-2014-2136

CVE-2014-2136 affects Cisco WebEx ARF/WRF Players. The vulnerability is a buffer overflow in ARF/WRF parsing (ARF: T27 LD before SP32 EP16, T28 before T28.12, T29 before T29.2) that could allow remote code execution or memory corruption resulting in a denial of service when processing a crafted A...

9.3CVSS8.2AI score0.03794EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.48 views

CVE-2012-3941

CVE-2012-3941 concerns the Cisco WebEx Recording Format (WRF) Player. The advisory and CVE records describe heap/buffer overflow vulnerabilities in the WRF Player, exploitable via a crafted WRF file to achieve remote code execution. Affected versions include WebEx WRF Player on T27 prior to LD SP...

9.3CVSS8.2AI score0.05262EPSS
CVE
CVE
added 2013/09/06 10:0 a.m.47 views

CVE-2013-1118

Cisco WebEx Recording Format (WRF) and ARF players are affected by a stack-based buffer overflow in WRF/ARF playback components (T27 LD before SP32 EP16; T27 L10N before SP32_ORION111; T28 before T28.8) that could allow remote code execution via a crafted WRF file. Affected product families inclu...

9.3CVSS8.3AI score0.03189EPSS
CVE
CVE
added 2012/10/25 2:0 p.m.46 views

CVE-2012-3936

CVE-2012-3936 refers to a buffer overflow in the Cisco WebEx Recording Format (WRF) Player. The vulnerability affects WebEx WRF Player versions T27 before LD SP32 EP10 and T28 before T28.4, allowing a remote attacker to execute arbitrary code by convincing a user to open a crafted WRF file. The i...

9.3CVSS8AI score0.05217EPSS
CVE
CVE
added 2012/06/29 2:37 p.m.45 views

CVE-2012-3055

Cisco WebEx WRF/ARF players are vulnerable to a stack-based buffer overflow via a crafted DHT chunk in a JPEG image inside a WRF/ARF file (Bug CSCtz72953). A remote attacker could exploit this by convincing a user to open a malicious recording, potentially executing arbitrary code. Affected produ...

9.3CVSS8.2AI score0.03189EPSS
CVE
CVE
added 2013/09/06 10:0 a.m.45 views

CVE-2013-1119

CVE-2013-1119 describes buffer overflow vulnerabilities in Cisco WebEx Recording Format (WRF) and ARF players. A crafted DHT index value in JPEG data within a WRF file could allow remote execution of arbitrary code or cause memory corruption leading to denial of service. Affected components inclu...

9.3CVSS8.2AI score0.03124EPSS