exploitDog

CVE-2011-3319

Опубликовано: 27 окт. 2011

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Buffer overflow in the WRF parsing functionality in the Cisco WebEx Recording Format (WRF) player T26 before SP49 EP40 and T27 before SP28 allows remote attackers to execute arbitrary code via a crafted WRF file.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-webex
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-webex
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:webex_recording_format_player:26:*:*:*:*:*:*:*

cpe:2.3:a:cisco:webex_recording_format_player:27:*:*:*:*:*:*:*

cpe:2.3:a:cisco:webex_recording_format_player:27.10:*:*:*:*:*:*:*

cpe:2.3:a:cisco:webex_recording_format_player:27.12:*:*:*:*:*:*:*

cpe:2.3:a:cisco:webex_recording_format_player:27.13:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.02937

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-m253-34jg-p94g

github

больше 3 лет назад

Buffer overflow in the WRF parsing functionality in the Cisco WebEx Recording Format (WRF) player T26 before SP49 EP40 and T27 before SP28 allows remote attackers to execute arbitrary code via a crafted WRF file.

EPSS

Процентиль: 86%

0.02937

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-119