Skip to main content

Cisco WebEx Player Buffer Overflow Vulnerability

Last Update Date: 11 Oct 2012 10:49 Release Date: 11 Oct 2012 5069 Views

RISK: Medium Risk

TYPE: Clients - Im, Chat & Voip

TYPE: Im, Chat & Voip

Multiple vulnerabilities have been identified in Cisco WebEx Player. A remote user can cause arbitrary code to be executed on the target user's system.

 

A remote user can create specially crafted WRF file that, when loaded by the target user, will trigger a buffer overflow or heap overflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.


Impact

  • Remote Code Execution

System / Technologies affected

  • Versions prior to 27.32.10 (T27LDSP32EP10), 28.4 (T28.4)

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link