Описание
Buffer overflow in Cisco WebEx Recording Format (WRF) player T27 LD before SP32 EP16, T27 L10N before SP32_ORION111, and T28 before T28.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DHT index value in JPEG data within a WRF file, aka Bug ID CSCuc24503.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:webex_recording_format_player:27.11.26:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:27.21.10:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:27.25.10:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:27.32.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:27.32.10:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:28.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:webex_recording_format_player:28.4:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02202
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Buffer overflow in Cisco WebEx Recording Format (WRF) player T27 LD before SP32 EP16, T27 L10N before SP32_ORION111, and T28 before T28.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DHT index value in JPEG data within a WRF file, aka Bug ID CSCuc24503.
EPSS
Процентиль: 84%
0.02202
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119