Vulnerability Description
Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCua40962.
CVSS Score
9.3
HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Webex Recording Format Player | 27.11.26 |
Related Weaknesses (CWE)
References
- http://osvdb.org/86141
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
- http://osvdb.org/86141
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
FAQ
What is CVE-2012-3936?
CVE-2012-3936 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCua...
How severe is CVE-2012-3936?
CVE-2012-3936 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3936?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Webex Recording Format Player.