CVE-2012-1336

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1335 and CVE-2012-1337.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
ciscowebex_recording_format_player
27.11.0 ≤
𝑥
≤ 27.11.26
ciscowebex_recording_format_player
27.21.0 ≤
𝑥
≤ 27.21.10
ciscowebex_recording_format_player
27.25.0 ≤
𝑥
< 27.25.10
ciscowebex_recording_format_player
27.32.0 ≤
𝑥
< 27.32.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex
http://www.securitytracker.com/id?1026888
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex
http://www.securitytracker.com/id?1026888