CVE-2011-4004
Published Oct 27, 2011
Last updated 13 years ago
Overview
- Description
- Buffer overflow in the ATAS32 processing functionality in the Cisco WebEx Recording Format (WRF) player T26 before SP49 EP40 and T27 before SP28 allows remote attackers to execute arbitrary code via a crafted WRF file.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89A7EC6D-EFF7-494D-BBF7-787464A2858B"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F949C6D-8074-444B-986E-63F06F9A05A7"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1B242684-7692-4F50-8419-587F0DCBC376"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D126564-E0D1-4E25-BD83-B10EF9AFBDA8"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F4D92FB5-277D-43B8-8200-43E1FE102BA3"
}
],
"operator": "OR"
}
]
}
]