CVE-2012-3937
Published Oct 25, 2012
Last updated 12 years ago
Overview
- Description
- Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz72967.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.11.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5EB4D705-80E2-4502-983E-03F2D240D8BB"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.21.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DDE5BFC1-9CF2-4C31-BEAF-70E0DCF5E5FB"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.25.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F541D65-1266-4CB4-BC4B-7EE5FF582E17"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:27.32.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A98020AB-0BBB-4BE8-AAE3-DC86E42D3547"
},
{
"criteria": "cpe:2.3:a:cisco:webex_recording_format_player:28.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "032D67A1-FE20-44D7-BC33-BE6316A7E15A"
}
],
"operator": "OR"
}
]
}
]