CVE-2016-1415

Опубликовано: 03 сент. 2016

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-webex
Vendor Advisory
http://www.securityfocus.com/bid/92711
http://www.securitytracker.com/id/1036713
https://www.exploit-db.com/exploits/40509/
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-webex
Vendor Advisory
http://www.securityfocus.com/bid/92711
http://www.securitytracker.com/id/1036713
https://www.exploit-db.com/exploits/40509/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_wrf_player_t29:sp10_base:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.04094

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

GHSA-fqf4-wq7j-mqmv